Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
patchstackRafie Muhammad aka Yeraisci (Patchstack Alliance)PATCHSTACK:36C5B596214E9B7AC7D0EBF39FEBFD97
HistoryJul 12, 2022 - 12:00 a.m.

WordPress GiveWP plugin <= 2.20.2 - Authenticated Arbitrary File Creation via Export function vulnerability

2022-07-1200:00:00
Rafie Muhammad aka Yeraisci (Patchstack Alliance)
patchstack.com
6

0.001 Low

EPSS

Percentile

40.4%

JSON

Authenticated Arbitrary File Creation via Export function vulnerability discovered by Rafie Muhammad aka Yeraisci (Patchstack Alliance) in WordPress GiveWP plugin (versions <= 2.20.2).

Solution

           Update the WordPress GiveWP plugin to the latest available version (at least 2.21.0).
CPENameOperatorVersion
givewple2.20.2

Related

cve 1
wpvulndb 1
prion 1
nvd 1
cvelist 1
openvas 1
cve
cve
CVE-2022-28700
2022-07-21 18:15:08
wpvulndb
wpvulndb
GiveWP < 2.21.0 - Manager+ Arbitrary File Creation via Export
2022-07-12 00:00:00
prion
prion
Privilege escalation
2022-07-21 18:15:00
nvd
nvd
CVE-2022-28700
2022-07-21 18:15:08
cvelist
cvelist
CVE-2022-28700 WordPress GiveWP plugin <= 2.20.2 - Authenticated Arbitrary File Creation via Export function vulnerability
2022-07-12 00:00:00
openvas
openvas
WordPress GiveWP Plugin <= 2.20.2 Multiple Vulnerabilities
2022-07-22 00:00:00

0.001 Low

EPSS

Percentile

40.4%

JSON
Related for PATCHSTACK:36C5B596214E9B7AC7D0EBF39FEBFD97
cve1wpvulndb1prion1nvd1cvelist1openvas1