cbcvebase.
CVE-2022-1119
published 2022-04-19

CVE-2022-1119: The Simple File List WordPress plugin is vulnerable to Arbitrary File Download via the eeFile parameter found in the ~/includes/ee-downloader.php file due to…

PriorityP266high7.5CVSS 3.1
AVNACLPRNUINSUCHINAN
ITWEXPLOIT
Exploited in the wild
EPSS
19.61%
97.0th percentile
The Simple File List WordPress plugin is vulnerable to Arbitrary File Download via the eeFile parameter found in the ~/includes/ee-downloader.php file due to missing controls which makes it possible unauthenticated attackers to supply a path to a file that will subsequently be downloaded, in versions up to and including 3.2.7.

Affected

3 ranges
VendorProductVersion rangeFixed in
eemitchsimple_file_list<= 3.2.7
msrccbl2_junit_on_cbl_mariner_2.0
simplefilelistsimple-file-list< 3.2.83.2.8

Detection & IOCsextracted from sources · hover to see the quote

url/wp-content/plugins/simple-file-list/includes/ee-downloader.php?eeFile=%2e%2e%2f%2e%2e%2f%2e%2e%2f%2e%2e/wp-config.php
path/wp-content/plugins/simple-file-list/includes/ee-downloader.php
  • GET request to ee-downloader.php with eeFile parameter containing path traversal sequences (%2e%2e%2f) targeting wp-config.php; a 200 response body containing both 'DB_NAME' and 'DB_PASSWORD' confirms successful exploitation.
  • The eeFile parameter is the injection point; monitor for URL-encoded dot-dot-slash traversal sequences (e.g., %2e%2e%2f) in requests to ee-downloader.php from unauthenticated users.
  • ·Vulnerability affects Simple File List plugin versions up to and including 3.2.7; version 3.2.8 and later are patched. Ensure version checks are scoped accordingly.

CVSS provenance

nvdv3.17.5HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:P/I:N/A:N
vendor_msrc5.4MEDIUM
vendor_redhat5.4MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.