← back
CVE-2022-0779

User Meta < 2.4.4 - Subscriber+ Local File Enumeration via Path Traversal

EPSS 2.2%CWE-22
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS EPSS 2.2%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
06 Jun 2022Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
The User Meta WordPress plugin before 2.4.4 does not validate the filepath parameter of its um_show_uploaded_file AJAX action, which could allow low privileged users such as subscriber to enumerate the local files on the web server via path traversal payloads
Affected products
Unknown · User Meta – User Profile Builder and User management plugin

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://wpscan.com/vulnerability/9d4a3f09-b011-4d87-ab63-332e505cf1cd