CVE-2022-1476
published 2022-05-10CVE-2022-1476: The All-in-One WP Migration plugin for WordPress is vulnerable to arbitrary file deletion via directory traversal due to insufficient file validation via the…
PriorityP350medium6.5CVSS 3.1
AVNACLPRHUINSUCNIHAH
EPSS
47.49%
98.7th percentile
The All-in-One WP Migration plugin for WordPress is vulnerable to arbitrary file deletion via directory traversal due to insufficient file validation via the ~/lib/model/class-ai1wm-backups.php file, in versions up to, and including, 7.58. This can be exploited by administrative users, and users who have access to the site's secret key.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| servmask | all-in-one_wp_migration | <= 7.58 | — |
| servmask | all-in-one_wp_migration_and_backup | <= 7.58 | — |
CVSS provenance
nvdv3.16.5MEDIUMCVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H
nvdv2.05.5MEDIUMAV:N/AC:L/Au:S/C:N/I:P/A:P
vendor_redhat7.0HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-qjj4-mxpm-p3m8: The All-in-One WP Migration plugin for WordPress is vulnerable to arbitrary file deletion via directory traversal due to insufficient file validation
ghsa_unreviewed·2022-05-11
CVE-2022-1476 [MEDIUM] CWE-22 GHSA-qjj4-mxpm-p3m8: The All-in-One WP Migration plugin for WordPress is vulnerable to arbitrary file deletion via directory traversal due to insufficient file validation
The All-in-One WP Migration plugin for WordPress is vulnerable to arbitrary file deletion via directory traversal due to insufficient file validation via the ~/lib/model/class-ai1wm-backups.php file, in versions up to, and including, 7.58. This can be exploited by administrative users, and users who have access to the site's secret key.
Red Hat
kpatch: mm/mremap.c: incomplete fix for CVE-2022-41222
vendor_redhat·2023-03-07·CVSS 7.0
CVE-2023-1476 [HIGH] CWE-416 kpatch: mm/mremap.c: incomplete fix for CVE-2022-41222
kpatch: mm/mremap.c: incomplete fix for CVE-2022-41222
A use-after-free flaw was found in the Linux kernel’s mm/mremap memory address space accounting source code. This issue occurs due to a race condition between rmap walk and mremap, allowing a local user to crash the system or potentially escalate their privileges on the system.
A use-after-free flaw was found in the Linux kernel’s mm/mremap memory address space accounting source code. This issue occurs due to a race condition between rmap walk and mremap, allowing a local user to crash the system or potentially escalate their privileges on the system.
Statement: Red Hat Product Security is aware of this issue. Updates will be released as they become available.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&old=2715609%40all-in-one-wp-migration&new=2715609%40all-in-one-wp-migration&sfp_email=&sfph_mail=https://www.wordfence.com/threat-intel/vulnerabilities/id/e58634c3-7fcd-4885-b897-4e6a97fb06ac?source=cvehttps://www.wordfence.com/vulnerability-advisories/#CVE-2022-1476https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&old=2715609%40all-in-one-wp-migration&new=2715609%40all-in-one-wp-migration&sfp_email=&sfph_mail=https://www.wordfence.com/threat-intel/vulnerabilities/id/e58634c3-7fcd-4885-b897-4e6a97fb06ac?source=cvehttps://www.wordfence.com/vulnerability-advisories/#CVE-2022-1476
2022-05-10
Published