The GiveWP plugin version 2.21.0 and below allows Manager+ users to create arbitrary files via export
Reporter | Title | Published | Views | Family All 6 |
---|---|---|---|---|
Patchstack | WordPress GiveWP plugin <= 2.20.2 - Authenticated Arbitrary File Creation via Export function vulnerability | 12 Jul 202200:00 | – | patchstack |
Cvelist | CVE-2022-28700 WordPress GiveWP plugin <= 2.20.2 - Authenticated Arbitrary File Creation via Export function vulnerability | 21 Jul 202217:23 | – | cvelist |
Prion | Privilege escalation | 21 Jul 202218:15 | – | prion |
NVD | CVE-2022-28700 | 21 Jul 202218:15 | – | nvd |
CVE | CVE-2022-28700 | 21 Jul 202218:15 | – | cve |
OpenVAS | WordPress GiveWP Plugin <= 2.20.2 Multiple Vulnerabilities | 22 Jul 202200:00 | – | openvas |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo