Lucene search
Multiple authorsPATCHSTACK:E3DF2A11B15B39FBD7E60BD22FE17803HistoryJun 27, 2022 - 12:00 a.m.
WordPress Download Monitor plugin <= 4.5.9 - Authenticated Arbitrary File Download vulnerability
2022-06-2700:00:00
Multiple authors
patchstack.com
10
0.001 Low
EPSS
Percentile
33.0%
Authenticated Arbitrary File Download vulnerability discovered by Thiago Martins, Jorge Buzeti, Leandro Inacio, Lucas de Souza, Matheus Oliveira, Filipe Baptistella, Leonardo Paiva, Jose Thomaz, Joao Maciel, Vinicius Pereira, Geovanni Campos, Hudson Nowak, Guilherme Acerbi in WordPress Download Monitor plugin (versions <= 4.5.9).
Solution
Update the WordPress Download Monitor plugin to the latest available version (at least 4.5.91).
| CPE | Name | Operator | Version |
|---|---|---|---|
| download monitor | le | 4.5.9 |
Related
cnvd
cnvd
WordPress plugin Download Monitor arbitrary file download vulnerability
2022-07-19 00:00:00
nvd
nvd
CVE-2022-2222
2022-07-17 11:15:09
wpexploit
wpexploit
Download Monitor < 4.5.91 - Admin+ Arbitrary File Download
2022-04-05 00:00:00
osv
osv
CVE-2022-2222
2022-07-17 11:15:09
cve
cve
CVE-2022-2222
2022-07-17 11:15:09
prion
prion
Design/Logic Flaw
2022-07-17 11:15:00
cvelist
cvelist
CVE-2022-2222 Download Monitor < 4.5.91 - Admin+ Arbitrary File Download
2022-07-17 10:37:28
wpvulndb
wpvulndb
Download Monitor < 4.5.91 - Admin+ Arbitrary File Download
2022-04-05 00:00:00