Lucene search
PRIOn knowledge basePRION:CVE-2022-2554HistoryOct 10, 2022 - 9:15 p.m.
Path traversal
2022-10-1021:15:00
PRIOn knowledge base
www.prio-n.com
8
wordpress
plugin
path traversal
high privilege users
security vulnerability
The Enable Media Replace WordPress plugin before 4.0.0 does not ensure that renamed files are moved to the Upload folder, which could allow high privilege users such as admin to move them outside to the web root directory via a path traversal attack for example
| CPE | Name | Operator | Version |
|---|---|---|---|
| enable_media_replace | lt | 4.0.0 |
Related
cve
cve
CVE-2022-2554
2022-10-10 21:15:10
patchstack
patchstack
wpexploit
wpexploit
Enable Media Replace < 4.0.0 - Admin+ Path Traversal
2022-09-14 00:00:00
nvd
nvd
CVE-2022-2554
2022-10-10 21:15:10
wpvulndb
wpvulndb
Enable Media Replace < 4.0.0 - Admin+ Path Traversal
2022-09-14 00:00:00
openvas
openvas
WordPress Enable Media Replace Plugin < 4.0.0 Path Traversal Vulnerability
2023-08-01 00:00:00
cvelist
cvelist
CVE-2022-2554 Enable Media Replace < 4.0.0 - Admin+ Path Traversal
2022-10-10 00:00:00