CVE-2022-1392
published 2022-04-25CVE-2022-1392: The Videos sync PDF WordPress plugin through 1.7.4 does not validate the p parameter before using it in an include statement, which could lead to Local File…
PriorityP258high7.5CVSS 3.1
AVNACLPRNUINSUCHINAN
EXPLOIT
EPSS
11.09%
95.4th percentile
The Videos sync PDF WordPress plugin through 1.7.4 does not validate the p parameter before using it in an include statement, which could lead to Local File Inclusion issues
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| commoninja | videos_sync_pdf | <= 1.7.4 | — |
Detection & IOCsextracted from sources · hover to see the quote
- →HTTP GET request to the vulnerable endpoint with `p=` parameter; a 200 response containing both error strings confirms unauthenticated LFI exploitability. ↗
- →Response body containing the string 'REPERTOIRE_VIDEOSYNCPDFreglages/Menu_Plugins/tout.php' is a strong indicator of the vulnerable plugin being present and the LFI path being triggered. ↗
- →The vulnerability is unauthenticated (PR:N, UI:N) and exploitable via the `p` parameter in tout.php; monitor web server logs for GET requests to this path with arbitrary `p` values. ↗
- ·Affected versions are up to and including 1.7.4; version 1.7.5 and above contain the fix. Ensure version checks target <=1.7.4. ↗
- ·The Nuclei template uses a benign probe value (`p=tout`) to trigger a PHP file-not-found error rather than actually reading sensitive files; real exploitation would use path traversal sequences in the `p` parameter. ↗
CVSS provenance
nvdv3.17.5HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:P/I:N/A:N
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Nuclei
WordPress Videos sync PDF <=1.7.4 - Local File Inclusion
nuclei·CVSS 7.5
CVE-2022-1392 [HIGH] WordPress Videos sync PDF <=1.7.4 - Local File Inclusion
WordPress Videos sync PDF =1.7.5) or apply the vendor-provided patch to mitigate the vulnerability.
reference:
- https://wpscan.com/vulnerability/fe3da8c1-ae21-4b70-b3f5-a7d014aa3815
- https://packetstormsecurity.com/files/166534/
- https://nvd.nist.gov/vuln/detail/CVE-2022-1392
- https://github.com/ARPSyndicate/cvemon
- https://github.com/ARPSyndicate/kenzer-templates
classification:
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
cvss-score: 7.5
cve-id: CVE-2022-1392
cwe-id: CWE-22
epss-score: 0.50891
epss-percentile: 0.97872
cpe: cpe:2.3:a:commoninja:videos_sync_pdf:*:*:*:*:*:wordpress:*:*
metadata:
verified: true
max-request: 1
vendor: commoninja
product: videos_sync_pdf
framework: wordpress
tags: cve,cve2022,lfi,wp-plugin,unauth,wpscan,packetstorm,wp,wordpress,commoninja,vu
No writeups or analysis indexed.
2022-04-25
Published