CVE-2022-4236

CWE-552Files Accessible to External Parties3 documents3 sources
Severity
6.5MEDIUM
EPSS
0.6%
top 31.66%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Unknown Welcart E-commerceWelcart Welcart E-commerce
Timeline
PublishedJan 2
Latest updateJan 3

Description

The Welcart e-Commerce WordPress plugin before 2.8.5 does not validate user input before using it to output the content of a file via an AJAX action available to any authenticated users, which could allow users with a role as low as subscriber to read arbitrary files on the server.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:NExploitability: 2.8 | Impact: 3.6

Affected Packages2 packages

CVEListV5unknown/welcart_e-commerce< 2.8.5

🔴Vulnerability Details

2
GHSA
GHSA-h2jj-vr3r-h3v5: The Welcart e-Commerce WordPress plugin before 22023-01-03
CVEList
Welcart e-Commerce < 2.8.5 - Subscriber+ Arbitrary File Access2023-01-02
CVE-2022-4236 (MEDIUM CVSS 6.5) | The Welcart e-Commerce WordPress pl | cvebase.io