CVE-2022-2554

The Enable Media Replace WordPress plugin before 4.0.0 does not ensure that renamed files are moved to the Upload folder, which could allow high privilege users such as admin to move them outside to the web root directory via a path traversal attack for example

CVSS v3 4.9 MEDIUM

4.9^/10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 1.2 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required HIGH

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact HIGH

Availability Impact NONE

Scope UNCHANGED

References

Link	Resource
https://wpscan.com/vulnerability/5872f4bf-f423-4ace-b8b6-d4cc4f6ca8d9	Exploit Third Party Advisory

Configurations

Configuration 1 (hide)

cpe:2.3:a:shortpixel:enable_media_replace:*:*:*:*:*:wordpress:*:*

History

No history.

Information

Published : 2022-10-10 21:15

Updated : 2022-10-11 18:01

NVD link : CVE-2022-2554

Mitre link : CVE-2022-2554

CVE.ORG link : CVE-2022-2554

JSON object : View

Products Affected

shortpixel

enable_media_replace

CWE

CWE-22

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

4.9 /10