4 matches found
CVE-2022-4101
creationtimestamp| type| source ---|---|--- 2025-04-04 18:36:12+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/10519...
CVE-2022-4101 Images Optimize and Upload CF7 <= 2.1.4 - Unauthenticated Arbitrary File Deletion
The Images Optimize and Upload CF7 WordPress plugin through 2.1.4 does not validate the file to be deleted via an AJAX action available to unauthenticated users, which could allow them to delete arbitrary files on the server via path traversal attack...
CVE-2022-4101
CVE-2022-4101 affects the WordPress plugin Images Optimize and Upload CF7 (versions ≤ 2.1.4). The issue arises because an AJAX action accessible to unauthenticated users does not validate the file to be deleted, enabling a path-traversal attack that could delete arbitrary files on the server. Pub...
CVE-2022-4101 Images Optimize and Upload CF7 <= 2.1.4 - Unauthenticated Arbitrary File Deletion
The Images Optimize and Upload CF7 WordPress plugin through 2.1.4 does not validate the file to be deleted via an AJAX action available to unauthenticated users, which could allow them to delete arbitrary files on the server via path traversal attack...