CVE-2022-2546
published 2023-02-02CVE-2022-2546: The All-in-One WP Migration WordPress plugin before 7.63 uses the wrong content type, and does not properly escape the response from the ai1wm_export AJAX…
PriorityP431medium4.7CVSS 3.1
AVNACHPRNUIRSCCLILAN
EXPLOIT
EPSS
1.20%
64.4th percentile
The All-in-One WP Migration WordPress plugin before 7.63 uses the wrong content type, and does not properly escape the response from the ai1wm_export AJAX action, allowing an attacker to craft a request that when submitted by any visitor will inject arbitrary html or javascript into the response that will be executed in the victims session. Note: This requires knowledge of a static secret key
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| servmask | all-in-one_wp_migration | < 7.63 | 7.63 |
CVSS provenance
nvdv3.14.7MEDIUMCVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:N
cisa8.2HIGH
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-qfjr-7vg6-v99x: The All-in-One WP Migration WordPress plugin before 7
ghsa_unreviewed·2023-02-02
CVE-2022-2546 [MEDIUM] CWE-79 GHSA-qfjr-7vg6-v99x: The All-in-One WP Migration WordPress plugin before 7
The All-in-One WP Migration WordPress plugin before 7.63 uses the wrong content type, and does not properly escape the response from the ai1wm_export AJAX action, allowing an attacker to craft a request that when submitted by any visitor will inject arbitrary html or javascript into the response that will be executed in the victims session. Note: This requires knowledge of a static secret key
CISA
Microsoft Win32k Memory Corruption Vulnerability
cisa·2022-03-15·CVSS 8.2
CVE-2015-2546 [HIGH] CWE-119 Microsoft Win32k Memory Corruption Vulnerability
Vulnerability: Microsoft Win32k Memory Corruption Vulnerability
Affected: Microsoft Win32k
The kernel-mode driver in Microsoft Windows OS and Server allows local users to gain privileges via a crafted application.
Required Action: Apply updates per vendor instructions.
Notes: https://nvd.nist.gov/vuln/detail/CVE-2015-2546
Remediation Due Date: 2022-04-05
No detection rules found.
Nuclei
QNAP QTS and Photo Station 6.0.3 - Remote Command Execution
nuclei·CVSS 9.8
CVE-2019-7192 [CRITICAL] QNAP QTS and Photo Station 6.0.3 - Remote Command Execution
QNAP QTS and Photo Station 6.0.3 - Remote Command Execution
This improper access control vulnerability allows remote attackers to gain unauthorized access to the system. To fix these vulnerabilities, QNAP recommend updating Photo Station to their latest versions.
Template:
id: CVE-2019-7192
info:
name: QNAP QTS and Photo Station 6.0.3 - Remote Command Execution
author: DhiyaneshDK
severity: critical
description: |
This improper access control vulnerability allows remote attackers to gain unauthorized access to the system. To fix these vulnerabilities, QNAP recommend updating Photo Station to their latest versions.
impact: |
Successful exploitation of this vulnerability allows remote attackers to execute arbitrary commands on the target system.
remediation: |
Apply the latest security p
Nuclei
WordPress All-in-One WP Migration <=7.62 - Cross-Site Scripting
nuclei·CVSS 4.7
CVE-2022-2546 [MEDIUM] WordPress All-in-One WP Migration <=7.62 - Cross-Site Scripting
WordPress All-in-One WP Migration ')
condition: and
extractors:
- type: regex
name: secretkey
group: 1
regex:
- 'ai1wm_feedback"},"secret_key":"([0-9a-zA-Z]+)"'
internal: true
# digest: 4a0a0047304502207e8c1dc7d4755fc8dc2450327ebec51d921c4cd8d1f84d5adf0a76568b835a81022100aef1ab5d1d31e433c882030a0ad38977d5b022d1a37b8fecf7f20be1a5bf9a1c:922c64590222798bb761d5b6d8e72950
2023-02-02
Published