Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 12:27 a.m.8 views

CVE-2022-4794

The AAWP WordPress plugin before 3.12.3 can be used to abuse trusted domains to load malware or other files through it Reflected File Download to bypass firewall rules in companies...

7.5CVSS6.8AI score0.00797EPSS
Exploits2
Cvelist
Cvelist
added 2023/01/30 8:31 p.m.21 views

CVE-2022-4794 AAWP < 3.12.3 - Unsafe URL Handling

The AAWP WordPress plugin before 3.12.3 can be used to abuse trusted domains to load malware or other files through it Reflected File Download to bypass firewall rules in companies...

7.7AI score0.00797EPSS
Exploits2References1
Vulnrichment
Vulnrichment
added 2023/01/30 8:31 p.m.8 views

CVE-2022-4794 AAWP < 3.12.3 - Unsafe URL Handling

The AAWP WordPress plugin before 3.12.3 can be used to abuse trusted domains to load malware or other files through it Reflected File Download to bypass firewall rules in companies...

7.7AI score0.00797EPSS
Exploits2References1
CVE
CVE
added 2023/01/30 8:31 p.m.55 views

CVE-2022-4794

CVE-2022-4794 affects the WordPress plugin AAWP , prior to version 3.12.3. The root cause is unsafe URL handling that enables a Reflected File Download to load malware or files from trusted domains, bypassing some firewall rules. The vulnerability is supported by multiple sources: NVD/Red Hat ent...

7.5CVSS7.5AI score0.00797EPSS
Exploits2References1Affected Software1
Patchstack
Patchstack
added 2023/01/04 12:0 a.m.7 views

WordPress AAWP Plugin < 3.12.3 is vulnerable to Other Vulnerability Type

Software AAWP Type Plugin Vulnerable versions 3.12.3 Fixed in 3.12.3 OWASP Top 10 A6: Security Misconfiguration Classification Other Vulnerability Type CVE CVE-2022-4794 Patch priority Low CVSS severity Low 3.1 Developer Claim ownership PSID 137f96d60cee Credits Daniel Ruf Required privilege...

7.5CVSS6.5AI score0.00797EPSS
Exploits2References3Affected Software1
Rows per page
Query Builder