CVE-2022-4794 in AAWP PluginИнформация

Сводка

по MITRE • 30.01.2023

The AAWP WordPress plugin before 3.12.3 can be used to abuse trusted domains to load malware or other files through it (Reflected File Download) to bypass firewall rules in companies.

Be aware that VulDB is the high quality source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Резервировать

28.12.2022

Раскрытие

30.01.2023

Модерация

принято

Вход

VDB-219821

CPE

готов

CWE

CWE-639 (Подтверждённый)

CVSS

7.5 (NVD)

EPSS

0.00536

KEV

Нет

Деятельности

Очень низкий

Сектор

Hostingprovider

Источники

MITRE	https://www.cve.org/CVERecord?id=CVE-2022-4794
NVD	https://nvd.nist.gov/vuln/detail/CVE-2022-4794
CVE Details	https://www.cvedetails.com/cve/CVE-2022-4794/

◂ Предыдущий Обзор Далее ▸

Interested in the pricing of exploits?

See the underground prices here!