Vulnerability Description
The Admin Word Count Column WordPress plugin through 2.2 does not validate the path parameter given to readfile(), which could allow unauthenticated attackers to read arbitrary files on server running old version of PHP susceptible to the null byte technique. This could also lead to RCE by using a Phar Deserialization technique
CVSS Score
CRITICAL
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Admin Word Count Column Project | Admin Word Count Column | <= 2.2 |
Related Weaknesses (CWE)
References
- https://packetstormsecurity.com/files/166476/ExploitThird Party AdvisoryVDB Entry
- https://wpscan.com/vulnerability/6293b319-dc4f-4412-9d56-55744246c990ExploitThird Party Advisory
- https://packetstormsecurity.com/files/166476/ExploitThird Party AdvisoryVDB Entry
- https://wpscan.com/vulnerability/6293b319-dc4f-4412-9d56-55744246c990ExploitThird Party Advisory
FAQ
What is CVE-2022-1390?
CVE-2022-1390 is a vulnerability with a CVSS score of 9.8 (CRITICAL). The Admin Word Count Column WordPress plugin through 2.2 does not validate the path parameter given to readfile(), which could allow unauthenticated attackers to read arbitrary files on server running...
How severe is CVE-2022-1390?
CVE-2022-1390 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2022-1390?
Check the references section above for vendor advisories and patch information. Affected products include: Admin Word Count Column Project Admin Word Count Column.