Lucene search
PRIOn knowledge basePRION:CVE-2022-1540HistoryDec 05, 2022 - 5:15 p.m.
Design/Logic Flaw
2022-12-0517:15:00
PRIOn knowledge base
www.prio-n.com
1
postmagthemes
wordpress plugin
high-privilege users
arbitrary files
rce
validation_issue
0.001 Low
EPSS
Percentile
43.1%
The PostmagThemes Demo Import WordPress plugin through 1.0.7 does not validate the imported file, allowing high-privilege users such as admin to upload arbitrary files (such as PHP) leading to RCE.
| CPE | Name | Operator | Version |
|---|---|---|---|
| postmagthemes_demo_import | le | 1.0.7 |
Related
patchstack
patchstack
cve
cve
CVE-2022-1540
2022-12-05 17:15:09
nvd
nvd
CVE-2022-1540
2022-12-05 17:15:09
wpexploit
wpexploit
PostmagThemes Demo < 1.0.8 - Admin+ Arbitrary File Upload
2022-11-11 00:00:00
wpvulndb
wpvulndb
PostmagThemes Demo < 1.0.8 - Admin+ Arbitrary File Upload
2022-11-11 00:00:00
cvelist
cvelist
CVE-2022-1540 PostmagThemes Demo <= 1.0.7 - Admin+ Arbitrary File Upload
2022-12-05 16:50:37