CVE-2022-1788
CVE-2022-1788 concerns the WordPress plugin “Change Uploaded File Permissions” (versions <= 4.0.0). The connected sources explicitly describe a CSRF vulnerability due to missing checks that can be exploited to change file and folder permissions across folders, potentially exposing sensitive fi...