» 2022 » 5월

CVE-2022-1217

Posted on 2022년 5월 17일2022년 5월 17일 by admin

CVE-2022-1217

The Custom TinyMCE Shortcode Button WordPress plugin through 1.1 does not sanitise and escape the PHP_SELF variable before outputting it back in an attribute in an admin page, leading to Reflected Cross-Site Scripting.

Source: CVE-2022-1217

CVE-2022-1103

Posted on 2022년 5월 17일2022년 5월 17일 by admin

CVE-2022-1103

The Advanced Uploader WordPress plugin through 4.2 allows any authenticated users like subscriber to upload arbitrary files, such as PHP, which could lead to RCE

Source: CVE-2022-1103

CVE-2022-1182

Posted on 2022년 5월 17일2022년 5월 17일 by admin

CVE-2022-1182

The Visual Slide Box Builder WordPress plugin through 3.2.9 does not sanitise and escape various parameters before using them in SQL statements via some of its AJAX actions available to any authenticated users (such as subscriber), leading to SQL Injections

Source: CVE-2022-1182

CVE-2022-1062

Posted on 2022년 5월 17일2022년 5월 17일 by admin

CVE-2022-1062

The th23 Social WordPress plugin through 1.2.0 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed

Source: CVE-2022-1062

CVE-2022-1089

Posted on 2022년 5월 17일2022년 5월 17일 by admin

CVE-2022-1089

The Bulk Edit and Create User Profiles WordPress plugin before 1.5.14 does not sanitise and escape the Users Login, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed

Source: CVE-2022-1089

CVE-2022-1051

Posted on 2022년 5월 17일2022년 5월 17일 by admin

CVE-2022-1051

The WPQA Builder Plugin WordPress plugin before 5.2, used as a companion plugin for the Discy and Himer , does not sanitise and escape the city, phone or profile credentials fields when outputting it in the profile page, allowing any authenticated user to perform Cross-Site Scripting attacks.

Source: CVE-2022-1051

CVE-2021-25119

Posted on 2022년 5월 17일2022년 5월 17일 by admin

CVE-2021-25119

The AGIL WordPress plugin through 1.0 accepts all zip files and automatically extracts the zip file without validating the extracted file type. Allowing high privilege users such as admin to upload an arbitrary file like PHP, leading to RCE

Source: CVE-2021-25119

CVE-2022-0573

Posted on 2022년 5월 17일2022년 5월 17일 by admin

CVE-2022-0573

JFrog Artifactory before 7.36.1 and 6.23.41, is vulnerable to Insecure Deserialization of untrusted data which can lead to DoS, Privilege Escalation and Remote Code Execution when a specially crafted request is sent by a low privileged authenticated user due to insufficient validation of a user-provided serialized object.

Source: CVE-2022-0573

CVE-2022-0574

Posted on 2022년 5월 17일2022년 5월 17일 by admin

CVE-2022-0574

Improper Access Control in GitHub repository publify/publify prior to 9.2.8.

Source: CVE-2022-0574

CVE-2022-0873

Posted on 2022년 5월 17일2022년 5월 17일 by admin

CVE-2022-0873

The Gmedia Photo Gallery WordPress plugin before 1.20.0 does not sanitise and escape the Album’s name before outputting it in pages/posts with a media embed, which could allow high privilege users such as admin to perform Cross-Site Scripting attacks even when the unfiltered-html capability is disallowed

Source: CVE-2022-0873