CVE-2022-1772

{"id": "CVE-2022-1772", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 2.1, "accessVector": "NETWORK", "vectorString": "AV:N/AC:H/Au:S/C:N/I:P/A:N", "authentication": "SINGLE", "integrityImpact": "PARTIAL", "accessComplexity": "HIGH", "availabilityImpact": "NONE", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "LOW", "obtainAllPrivilege": false, "exploitabilityScore": 3.9, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": true}], "cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "CHANGED", "version": "3.1", "baseScore": 4.8, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N", "integrityImpact": "LOW", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "HIGH", "confidentialityImpact": "LOW"}, "impactScore": 2.7, "exploitabilityScore": 1.7}]}, "published": "2022-06-13T13:15:12.437", "references": [{"url": "https://wpscan.com/vulnerability/02addade-d191-4e45-b7b5-2f3f673679ab", "tags": ["Exploit", "Third Party Advisory"], "source": "contact@wpscan.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "contact@wpscan.com", "description": [{"lang": "en", "value": "CWE-79"}]}], "descriptions": [{"lang": "en", "value": "The Google Places Reviews WordPress plugin before 2.0.0 does not properly escape its Google API key setting, which is reflected on the site's administration panel. A malicious administrator could abuse this bug, in a multisite WordPress configuration, to trick super-administrators into viewing the booby-trapped payload and taking over their account."}, {"lang": "es", "value": "El plugin Google Places Reviews de WordPress versiones anteriores a 2.0.0, no escapa correctamente de la configuraci\u00f3n de la clave de la API de Google, que es reflejado en el panel de administraci\u00f3n del sitio. Un administrador malicioso podr\u00eda abusar de este error, en una configuraci\u00f3n de WordPress multisitio, para enga\u00f1ar a super administradores para que vean la carga \u00fatil con trampa y tomen el control de su cuenta"}], "lastModified": "2022-06-21T17:39:36.137", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:google_places_reviews_project:google_places_reviews:*:*:*:*:*:wordpress:*:*", "vulnerable": true, "matchCriteriaId": "E3777A1B-C631-42CB-9880-368D222CB0B7", "versionEndExcluding": "2.0.0"}], "operator": "OR"}]}], "sourceIdentifier": "contact@wpscan.com"}