2 matches found
Exploit for Path Traversal in Simplefilelist Simple-File-List
CVE-2022-1119 1. Introduction WordPress Simple File List...
CVE-2022-1119
The CVE-2022-1119 issue affects WordPress Simple File List plugin versions up to 3.2.7. It is caused by missing input validation in ee-downloader.php (eeFile parameter), enabling unauthenticated arbitrary file download/read of server files. A local-file-download/LFI is the documented impact. Reme...