2 matches found
CVE-2022-42698 WordPress Api2Cart Bridge Connector plugin <= 1.1.0 - Arbitrary File Upload vulnerability
Unauth. Arbitrary File Upload vulnerability in WordPress Api2Cart Bridge Connector plugin = 1.1.0 on WordPress...
CVE-2022-42698
CVE-2022-42698 affects the WordPress plugin Api2Cart Bridge Connector (versions ≤ 1.1.0). The root cause is an unauthenticated Arbitrary File Upload due to insufficient input/file validation in the plugin, enabling an attacker to upload arbitrary files via the vulnerable endpoint. Impact is high:...