CVE-2022-2981

CWE-552 — Files Accessible to External Parties3 documents3 sources

Severity

4.9MEDIUM

EPSS

0.9%

top 24.57%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Unknown Download Monitor Wpchill Download Monitor

Timeline

PublishedOct 10

Latest updateOct 11

Description

The Download Monitor WordPress plugin before 4.5.98 does not ensure that files to be downloaded are inside the blog folders, and not sensitive, allowing high privilege users such as admin to download the wp-config.php or /etc/passwd even in an hardened environment or multisite setup.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:NExploitability: 1.2 | Impact: 3.6

Affected Packages2 packages

▶CVEListV5unknown/download_monitor4.5.98 — 4.5.98

▶NVDwpchill/download_monitor< 4.5.98

🔴Vulnerability Details

GHSA

GHSA-2739-p2pg-h53m: The Download Monitor WordPress plugin before 4↗2022-10-11

▶

CVEList

Download Monitor < 4.5.98 - Admin+ Arbitrary File Download↗2022-10-10

▶