CVE-2022-4974
published 2024-10-16CVE-2022-4974: The Freemius SDK, as used by hundreds of WordPress plugin and theme developers, was vulnerable to Cross-Site Request Forgery and Information disclosure due to…
PriorityP278medium6.3CVSS 3.1
AVNACLPRLUINSUCLILAL
ITWVulnCheck KEV
Exploited in the wild
EPSS
0.42%
34.0th percentile
The Freemius SDK, as used by hundreds of WordPress plugin and theme developers, was vulnerable to Cross-Site Request Forgery and Information disclosure due to missing capability checks and nonce protection on the _get_debug_log, _get_db_option, and the _set_db_option functions in versions up to, and including 2.4.2. Any WordPress plugin or theme running a version of Freemius less than 2.4.3 is vulnerable.
Affected
559 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| 5starplugins | easy_age_verify | < 1.6.1 | 1.6.1 |
| 5starplugins | featured_images_in_rss_for_mailchimp_more | < 1.5.9 | 1.5.9 |
| 5starplugins | marijuana_age_verify | < 1.3.1 | 1.3.1 |
| 9brada6 | tabs_with_recommended_posts | — | — |
| actuaryzask | azw_woocommerce_file_uploads | — | — |
| aguilerasoft | conversion_de_moneda_woocommerce | — | — |
| aharonyan | guest_posting_frontend_posting_front_editor_wp_front_user_submit | < 3.4.1 | 3.4.1 |
| ahmed17 | cf7_constant_contact_fields_mapping | — | — |
| ahmed17 | menu_item_scheduler | — | — |
| ahmed17 | rw_divi_unite_gallery | <= 1.0 | — |
| akdevs | genealogical_tree_family_tree_ancestry_for_wordpress | <= 2.1.5 | — |
| alex-ye | bbresolutions | — | — |
| alexmoss | opensea | < 1.0.3 | 1.0.3 |
| alleythemes | alley_business_toolkit | < 1.1.8 | 1.1.8 |
| alphabposervice | easy_code_snippets | < 1.0.1 | 1.0.1 |
| alphabposervice | easy_math_captcha_for_cf7 | — | — |
| alphabposervice | easy_newsletter_signups | < 1.0.4 | 1.0.4 |
| alphabposervice | easy_post_views_count | < 1.0.5 | 1.0.5 |
| anasbinmukim | mailchimp_manager | — | — |
| andyabelow | media_library_file_download | < 1.1 | 1.1 |
| anfrageformular | anfrageformular_multi_step_drag_drop_formular_builder_leadgenerierung | — | — |
| ankitmaru | advanced_page_visit_counter_most_wanted_analytics_plugin_for_wordpress | < 6.0.0 | 6.0.0 |
| annastaa | annasta_filters_for_woocommerce | < 1.5.0 | 1.5.0 |
| anssilaitila | contact_list_online_staff_directory_address_book | < 2.9.50 | 2.9.50 |
| anssilaitila | shared_files_frontend_file_upload_form_secure_file_sharing | < 1.6.72 | 1.6.72 |
CVSS provenance
nvdv3.16.3MEDIUMCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
vulncheck6.3MEDIUM
vendor_redhat7.8HIGH
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-p5fp-r7v7-h5q7: The Freemius SDK, as used by hundreds of WordPress plugin and theme developers, was vulnerable to Cross-Site Request Forgery and Information disclosur
ghsa_unreviewed·2024-10-16
CVE-2022-4974 [MEDIUM] CWE-862 GHSA-p5fp-r7v7-h5q7: The Freemius SDK, as used by hundreds of WordPress plugin and theme developers, was vulnerable to Cross-Site Request Forgery and Information disclosur
The Freemius SDK, as used by hundreds of WordPress plugin and theme developers, was vulnerable to Cross-Site Request Forgery and Information disclosure due to missing capability checks and nonce protection on the _get_debug_log, _get_db_option, and the _set_db_option functions in versions up to, and including 2.4.2. Any WordPress plugin or theme running a version of Freemius less than 2.4.3 is vulnerable.
VulnCheck
Freemius SDK _get_debug_log, _get_db_option, and the _set_db_option Functions Vulnerability
vulncheck·2022·CVSS 6.3
CVE-2022-4974 [MEDIUM] Freemius SDK _get_debug_log, _get_db_option, and the _set_db_option Functions Vulnerability
Freemius SDK _get_debug_log, _get_db_option, and the _set_db_option Functions Vulnerability
The Freemius SDK, as used by hundreds of WordPress plugin and theme developers, was vulnerable to Cross-Site Request Forgery and Information disclosure due to missing capability checks and nonce protection on the _get_debug_log, _get_db_option, and the _set_db_option functions in versions up to, and including 2.4.2. Any WordPress plugin or theme running a version of Freemius less than 2.4.3 is vulnerable.
Affected: Freemius Freemius SDK
Required Action: Apply remediations or mitigations per vendor instructions or discontinue use of the product if remediation or mitigations are unavailable.
Exploitation References: https://www.wordfence.com/threat-intel/vulnerabilities/detail/freemius-sdk-242-mis
Red Hat
vim: buffer over-read in scriptfile.c
vendor_redhat·2022-05-17·CVSS 7.8
CVE-2022-1769 [HIGH] CWE-119 vim: buffer over-read in scriptfile.c
vim: buffer over-read in scriptfile.c
Buffer Over-read in GitHub repository vim/vim prior to 8.2.4974.
A flaw was found in vim. The vulnerability occurs due to Illegal memory access and leads to a buffer over-read vulnerability. This flaw allows an attacker to input a specially crafted file, leading to a crash or code execution.
Mitigation: Untrusted vim scripts with -s [scriptin] are not recommended to run.
Package: vim (Red Hat Enterprise Linux 6) - Not affected
Package: vim (Red Hat Enterprise Linux 7) - Not affected
Package: vim (Red Hat Enterprise Linux 8) - Not affected
Package: vim (Red Hat Enterprise Linux 9) - Not affected
Package: vim (Red Hat Virtualization 4) - Not affected
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
https://freemius.com/blog/managing-security-issues-open-source-freemius-sdk-security-disclosure/https://web.archive.org/web/20220225174410/https%3A//www.pluginvulnerabilities.com/2022/02/25/our-security-review-of-wordpress-plugin-found-freemius-library-still-contained-vulnerabilities-3-years-after-major-security-incident/https://wpdirectory.net/search/01FWPVWA7BC5DYGZHNSZQ9QMN5https://wpdirectory.net/search/01G02RSGMFS1TPT63FS16RWEYRhttps://wpscan.com/vulnerability/6dae6dca-7474-4008-9fe5-4c62b9f12d0ahttps://www.wordfence.com/threat-intel/vulnerabilities/id/39fb0499-9ab4-4a2f-b0db-ece86bcf4d42?source=cve
2024-10-16
Published
Exploited in the wild