CVE-2022-2926 – The Download Manager WordPress plugin before 3.2.55 does not validate one of its settings, …

26 September 2022

Vuln ID: CVE-2022-2926

Published: 2022-09-26 13:15:10Z

Description: The Download Manager WordPress plugin before 3.2.55 does not validate one of its settings, which could allow high privilege users such as admin to list and read arbitrary files and folders outside of the blog directory

Source: NVD.NIST.GOV

Date:

26 September 2022

Categorie(s):

NVD

Tag(s):

NVD

The Fall of LabHost: Law Enforcement Shuts Down Phishing Service Provider18 April 2024
Hugely expanded Section 702 surveillance powers set for US Senate vote18 April 2024
Smashing Security podcast #368: Gary Barlow, and a scam turns deadly17 April 2024
Vorlon raises $15.7M to tackle third-party API risks17 April 2024
Students turning to cyberfraud as huge phishing site infiltrated, police reveal17 April 2024