Lucene search
K

4 matches found

Circl
Circl
added 2025/04/04 6:36 p.m.4 views

CVE-2022-4101

creationtimestamp| type| source ---|---|--- 2025-04-04 18:36:12+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/10519...

9.1CVSS8.6AI score0.29369EPSS
Exploits2References1
Vulnrichment
Vulnrichment
added 2023/01/16 3:37 p.m.3 views

CVE-2022-4101 Images Optimize and Upload CF7 <= 2.1.4 - Unauthenticated Arbitrary File Deletion

The Images Optimize and Upload CF7 WordPress plugin through 2.1.4 does not validate the file to be deleted via an AJAX action available to unauthenticated users, which could allow them to delete arbitrary files on the server via path traversal attack...

9.5AI score0.29369EPSS
Exploits2References1
CVE
CVE
added 2023/01/16 3:37 p.m.57 views

CVE-2022-4101

CVE-2022-4101 affects the WordPress plugin Images Optimize and Upload CF7 (versions ≤ 2.1.4). The issue arises because an AJAX action accessible to unauthenticated users does not validate the file to be deleted, enabling a path-traversal attack that could delete arbitrary files on the server. Pub...

9.1CVSS9.4AI score0.29369EPSS
Exploits2References1Affected Software1
Cvelist
Cvelist
added 2023/01/16 3:37 p.m.20 views

CVE-2022-4101 Images Optimize and Upload CF7 <= 2.1.4 - Unauthenticated Arbitrary File Deletion

The Images Optimize and Upload CF7 WordPress plugin through 2.1.4 does not validate the file to be deleted via an AJAX action available to unauthenticated users, which could allow them to delete arbitrary files on the server via path traversal attack...

9.5AI score0.29369EPSS
Exploits2References1
Rows per page
Query Builder