CVE-2022-4794 in AAWP Plugininformação

Sumário

de MITRE • 30/01/2023

The AAWP WordPress plugin before 3.12.3 can be used to abuse trusted domains to load malware or other files through it (Reflected File Download) to bypass firewall rules in companies.

Be aware that VulDB is the high quality source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Reservar

28/12/2022

Divulgação

30/01/2023

Moderação

aceite

Entrada

VDB-219821

CPE

pronto

CWE

CWE-639 (confirmado)

CVSS

7.5 (NVD)

EPSS

0.00536

KEV

não

Atividades

muito baixo

Sector

Hostingprovider

Fontes

MITRE	https://www.cve.org/CVERecord?id=CVE-2022-4794
NVD	https://nvd.nist.gov/vuln/detail/CVE-2022-4794
CVE Details	https://www.cvedetails.com/cve/CVE-2022-4794/

◂ Voltar Visão Geral Próximo ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!