3 matches found
WordPress Videos sync PDF <=1.7.4 - Local File Inclusion
WordPress Videos sync PDF 1.7.4 and prior does not validate the p parameter before using it in an include statement, which could lead to local file inclusion. id: CVE-2022-1392 info: name: WordPress Videos sync PDF =1.7.5 or apply the vendor-provided patch to mitigate the vulnerability. reference...
CVE-2022-1392
The Videos sync PDF WordPress plugin through 1.7.4 does not validate the p parameter before using it in an include statement, which could lead to Local File Inclusion issues...
CVE-2022-1392
The CVE-2022-1392 entry concerns the WordPress plugin Videos sync PDF, version = 1.7.5 or apply the vendor patch. The connected nuclei/WP exploit references indicate a PoC exists (e.g., WPEX template "Videos sync PDF