CVE-2022-3076 in CM Download Manager Plugininformation

Résumé

par MITRE • 26/09/2022

The CM Download Manager WordPress plugin before 2.8.6 allows high privilege users such as admin to upload arbitrary files by setting the any extension via the plugin's setting, which could be used by admins of multisite blog to upload PHP files for example.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Réserver

01/09/2022

Divulgation

26/09/2022

Modérer

accepté

Entrée

VDB-209556

CPE

prêt

EPSS

0.01065

KEV

non

Activités

très faible

Sources

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!