CVE-2022-33901
published 2022-07-22CVE-2022-33901: Unauthenticated Arbitrary File Read vulnerability in MultiSafepay plugin for WooCommerce plugin <= 4.13.1 at WordPress.
PriorityP354high7.5CVSS 3.1
AVNACLPRNUINSUCHINAN
EXPLOIT
EPSS
2.19%
80.2th percentile
Unauthenticated Arbitrary File Read vulnerability in MultiSafepay plugin for WooCommerce plugin <= 4.13.1 at WordPress.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| multisafepay | multisafepay_plugin_for_woocommerce | <= 4.15.0 | — |
Detection & IOCsextracted from sources · hover to see the quote
url/wp-admin/admin-ajax.php?action=admin_init&log_filename=../../../../../../../../../../../../../etc/passwd↗
- →HTTP GET request to wp-admin/admin-ajax.php with 'action=admin_init' and a 'log_filename' parameter containing path traversal sequences targeting /etc/passwd — no authentication required. ↗
- →Successful exploitation returns HTTP 200 with Content-Type header 'application/octet-stream' and a response body matching the regex 'root:.*:0:0:' (indicative of /etc/passwd content). ↗
- →The vulnerability is unauthenticated (PR:N) — monitor for path traversal patterns in the 'log_filename' query parameter on WordPress AJAX endpoints without any session/auth cookies. ↗
- ·Affected versions are MultiSafepay for WooCommerce <= 4.13.1; detections should be scoped to sites running this plugin version range. ↗
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Nuclei
WordPress MultiSafepay for WooCommerce <=4.13.1 - Arbitrary File Read
nuclei·CVSS 7.5
CVE-2022-33901 [HIGH] WordPress MultiSafepay for WooCommerce <=4.13.1 - Arbitrary File Read
WordPress MultiSafepay for WooCommerce <=4.13.1 - Arbitrary File Read
WordPress MultiSafepay for WooCommerce plugin through 4.13.1 contains an arbitrary file read vulnerability. An attacker can potentially obtain sensitive information, modify data, and/or execute unauthorized administrative operations in the context of the affected site.
Template:
id: CVE-2022-33901
info:
name: WordPress MultiSafepay for WooCommerce <=4.13.1 - Arbitrary File Read
author: theamanrawat
severity: high
description: |
WordPress MultiSafepay for WooCommerce plugin through 4.13.1 contains an arbitrary file read vulnerability. An attacker can potentially obtain sensitive information, modify data, and/or execute unauthorized administrative operations in the context of the affected site.
impact: |
An attacker ca
https://patchstack.com/database/vulnerability/multisafepay/wordpress-multisafepay-plugin-for-woocommerce-plugin-4-13-1-unauthenticated-arbitrary-file-read-vulnerabilityhttps://wordpress.org/plugins/multisafepay/#developershttps://patchstack.com/database/vulnerability/multisafepay/wordpress-multisafepay-plugin-for-woocommerce-plugin-4-13-1-unauthenticated-arbitrary-file-read-vulnerabilityhttps://wordpress.org/plugins/multisafepay/#developers
2022-07-22
Published