CVE-2022-0656
The CVE-2022-0656 issue affects the WordPress plugin Web To Print Shop: uDraw , where versions prior to 3.3.3 do not validate the URL parameter in the AJAX action udraw_convert_url_to_base64 before using it in file_get_contents, enabling unauthenticated arbitrary file reads (e.g., /etc/passwd, wp...