CVE-2022-2367

The WSM Downloader WordPress plugin through 1.4.0 allows only specific popular websites to download images/files from, this can be bypassed due to the lack of good "link" parameter validation
References
Configurations

Configuration 1

cpe:2.3:a:wsm_downloader_project:wsm_downloader:*:*:*:*:*:wordpress:*:*

Information

Published : 2022-08-08 02:15

Updated : 2022-08-11 06:11


NVD link : CVE-2022-2367

Mitre link : CVE-2022-2367

Products Affected
No products.
CWE