6 matches found
CVE-2022-2392
The Lana Downloads Manager WordPress plugin before 1.8.0 is affected by an arbitrary file download vulnerability that can be exploited by users with "Contributor" permissions or higher...
CVE-2022-2392
creationtimestamp| type| source ---|---|--- 2022-08-22 18:20:37+00:00| seen| https://t.me/cibsecurity/48483...
CVE-2022-2392
The Lana Downloads Manager WordPress plugin before 1.8.0 is affected by an arbitrary file download vulnerability that can be exploited by users with "Contributor" permissions or higher...
CVE-2022-2392
The Lana Downloads Manager WordPress plugin before 1.8.0 is affected by an arbitrary file download vulnerability that can be exploited by users with "Contributor" permissions or higher...
CVE-2022-2392 Lana Downloads Manager < 1.8.0 - Contributor+ Arbitrary File Download
The Lana Downloads Manager WordPress plugin before 1.8.0 is affected by an arbitrary file download vulnerability that can be exploited by users with "Contributor" permissions or higher...
CVE-2022-2392
The CVE-2022-2392 affects the Lana Downloads Manager WordPress plugin up to version 1.8.0. The vulnerability is an authenticated/Contributor+ arbitrary file download, reported to be triggered by supplying a file path via the plugin’s UI and results in a direct download of the chosen file (e.g., w...