CVE-2022-2222Files or Directories Accessible to External Parties in Download Monitor

CWE-552Files or Directories Accessible to External Parties4 documents4 sources
Severity
4.9MEDIUMNVD
EPSS
0.9%
top 24.48%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Wpchill Download Monitor
Timeline
PublishedJul 17
Latest updateMay 23

Description

The Download Monitor WordPress plugin before 4.5.91 does not ensure that files to be downloaded are inside the blog folders, and not sensitive, allowing high privilege users such as admin to download the wp-config.php or /etc/passwd even in an hardened environment or multisite setup.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:NExploitability: 1.2 | Impact: 3.6

Affected Packages1 packages

🔴Vulnerability Details

2
GHSA
GHSA-hg22-xhfq-mfrq: The Download Monitor WordPress plugin before 42022-07-18
CVEList
Download Monitor < 4.5.91 - Admin+ Arbitrary File Download2022-07-17

💥Exploits & PoCs

1
Exploit-DB
GetSimple CMS v3.3.16 - Remote Code Execution (RCE)2023-05-23
CVE-2022-2222 — Wpchill Download Monitor vulnerability | cvebase