CVE-2022-1777
Last modified
CVE-2022-1777 is a high-severity vulnerability rated 8.8/10 on the CVSS scale. The Filr WordPress plugin before 1.2.2.1 does not have authorisation check in two of its AJAX actions, allowing them to be called by any authenticated users, such as subscriber. They are are protected with a nonce, however the nonce is leaked on the dashboard. EPSS estimates a 1.23% chance of exploitation in the next 30 days.
Description
The Filr WordPress plugin before 1.2.2.1 does not have authorisation check in two of its AJAX actions, allowing them to be called by any authenticated users, such as subscriber. They are are protected with a nonce, however the nonce is leaked on the dashboard. This could allow them to upload arbitrary HTML files as well as delete all files or arbitrary ones.
Metrics
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Filr Project | Filr | < 1.2.2.1 |
References
- https://wpscan.com/vulnerability/a50dc7f8-a9e6-41fa-a047-ad1c3bc309b4Exploit, Third Party Advisory
- https://wpscan.com/vulnerability/a50dc7f8-a9e6-41fa-a047-ad1c3bc309b4Exploit, Third Party Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2022-1777?
How severe is CVE-2022-1777?
How do I fix CVE-2022-1777?
Are you affected by CVE-2022-1777?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST