5 matches found
CVE-2022-0236
creationtimestamp| type| source ---|---|--- 2022-01-18 20:25:01+00:00| seen| https://t.me/cibsecurity/35727 2025-12-19 20:18:03+00:00| seen| https://t.me/Dooztoria/22...
CVE-2022-0236 WP Import Export (Lite) <= 3.9.15 Unauthenticated Sensitive Data Disclosure
The WP Import Export WordPress plugin both free and premium versions is vulnerable to unauthenticated sensitive data disclosure due to a missing capability check on the download function wpieprocessfiledownload found in the /includes/classes/class-wpie-general.php file. This made it possible for...
CVE-2022-0236
CVE-2022-0236 affects the WordPress plugin WP Import Export (free & premium) up to version 3.9.15. The root cause is a missing capability check in the download function wpie_process_file_download (in ~/includes/classes/class-wpie-general.php), allowing unauthenticated attackers to disclose sensit...
CVE-2022-0236 WP Import Export (Lite) <= 3.9.15 Unauthenticated Sensitive Data Disclosure
The WP Import Export WordPress plugin both free and premium versions is vulnerable to unauthenticated sensitive data disclosure due to a missing capability check on the download function wpieprocessfiledownload found in the /includes/classes/class-wpie-general.php file. This made it possible for...
Exploit for Missing Authorization in Vjinfotech Wp_Import_Export
CVE-2022-0236 The WP Import Export WordPress plugin is vulner...