The SP Project & Document Manager WordPress plugin before 4.58 uses an easily guessable path to store user files, bad actors could use that to access other users' sensitive files.
References
Link | Resource |
---|---|
https://wpscan.com/vulnerability/51b4752a-7922-444d-a022-f1c7159b5d84 | Exploit Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: WPScan
Published: 2022-07-25T12:46:15
Updated: 2023-07-25T07:21:10.772Z
Reserved: 2022-05-02T00:00:00
Link: CVE-2022-1551
JSON object: View
NVD Information
Status : Modified
Published: 2022-07-25T13:15:08.217
Modified: 2023-11-07T03:41:59.963
Link: CVE-2022-1551
JSON object: View
Redhat Information
No data.
CWE