Lucene search
K

5 matches found

Circl
Circl
added 2022/01/18 8:25 p.m.4 views

CVE-2022-0236

creationtimestamp| type| source ---|---|--- 2022-01-18 20:25:01+00:00| seen| https://t.me/cibsecurity/35727 2025-12-19 20:18:03+00:00| seen| https://t.me/Dooztoria/22...

7.5CVSS7.3AI score0.04284EPSS
Exploits2References2
Cvelist
Cvelist
added 2022/01/18 4:52 p.m.22 views

CVE-2022-0236 WP Import Export (Lite) <= 3.9.15 Unauthenticated Sensitive Data Disclosure

The WP Import Export WordPress plugin both free and premium versions is vulnerable to unauthenticated sensitive data disclosure due to a missing capability check on the download function wpieprocessfiledownload found in the /includes/classes/class-wpie-general.php file. This made it possible for...

7.5CVSS7.5AI score0.04284EPSS
Exploits2References3
CVE
CVE
added 2022/01/18 4:52 p.m.76 views

CVE-2022-0236

CVE-2022-0236 affects the WordPress plugin WP Import Export (free & premium) up to version 3.9.15. The root cause is a missing capability check in the download function wpie_process_file_download (in ~/includes/classes/class-wpie-general.php), allowing unauthenticated attackers to disclose sensit...

7.5CVSS7.3AI score0.04284EPSS
Exploits2References3Affected Software2
Vulnrichment
Vulnrichment
added 2022/01/18 4:52 p.m.12 views

CVE-2022-0236 WP Import Export (Lite) <= 3.9.15 Unauthenticated Sensitive Data Disclosure

The WP Import Export WordPress plugin both free and premium versions is vulnerable to unauthenticated sensitive data disclosure due to a missing capability check on the download function wpieprocessfiledownload found in the /includes/classes/class-wpie-general.php file. This made it possible for...

7.5CVSS7.3AI score0.04284EPSS
Exploits2References3
GithubExploit
GithubExploit
added 2022/01/16 9:52 a.m.213 views

Exploit for Missing Authorization in Vjinfotech Wp_Import_Export

CVE-2022-0236 The WP Import Export WordPress plugin is vulner...

7.5CVSS7.3AI score0.04284EPSS
Exploits2
Rows per page
Query Builder