CVE-2022-3076 - OpenCVE

The CM Download Manager WordPress plugin before 2.8.6 allows high privilege users such as admin to upload arbitrary files by setting the any extension via the plugin's setting, which could be used by admins of multisite blog to upload PHP files for example.

Attack Vector Network

Attack Complexity Low

Privileges Required High

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

Vendors & Products
CPE Configurations

Vendors	Products
Cminds	Cm Download Manager

Configuration 1 [-]

cpe:2.3:a:cminds:cm_download_manager:*:*:*:*:*:wordpress:*:*

References

Link	Resource
https://wpscan.com/vulnerability/d18e695b-4d6e-4ff6-a060-312594a0d2bd	Exploit Patch Third Party Advisory

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: WPScan

Published: 2022-09-26T12:35:42

Updated: 2022-09-26T12:35:42

Reserved: 2022-09-01T00:00:00

Link: CVE-2022-3076

JSON object: View

NVD Information

Status : Analyzed

Published: 2022-09-26T13:15:11.090

Modified: 2022-09-27T04:37:44.793

Link: CVE-2022-3076

JSON object: View

Redhat Information

No data.

CWE

CWE-434

{"containers": {"cna": {"affected": [{"product": "CM Download Manager", "vendor": "Unknown", "versions": [{"lessThan": "2.8.6", "status": "affected", "version": "2.8.6", "versionType": "custom"}]}], "credits": [{"lang": "en", "value": "Mika"}], "descriptions": [{"lang": "en", "value": "The CM Download Manager WordPress plugin before 2.8.6 allows high privilege users such as admin to upload arbitrary files by setting the any extension via the plugin's setting, which could be used by admins of multisite blog to upload PHP files for example."}], "problemTypes": [{"descriptions": [{"cweId": "CWE-434", "description": "CWE-434 Unrestricted Upload of File with Dangerous Type", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"dateUpdated": "2022-09-26T12:35:42", "orgId": "1bfdd5d7-9bf6-4a53-96ea-42e2716d7a81", "shortName": "WPScan"}, "references": [{"tags": ["x_refsource_MISC"], "url": "https://wpscan.com/vulnerability/d18e695b-4d6e-4ff6-a060-312594a0d2bd"}], "source": {"discovery": "EXTERNAL"}, "title": "CM Download Manager < 2.8.6 - Admin+ Arbitrary File Upload", "x_generator": "WPScan CVE Generator", "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "contact@wpscan.com", "ID": "CVE-2022-3076", "STATE": "PUBLIC", "TITLE": "CM Download Manager < 2.8.6 - Admin+ Arbitrary File Upload"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "CM Download Manager", "version": {"version_data": [{"version_affected": "<", "version_name": "2.8.6", "version_value": "2.8.6"}]}}]}, "vendor_name": "Unknown"}]}}, "credit": [{"lang": "eng", "value": "Mika"}], "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "The CM Download Manager WordPress plugin before 2.8.6 allows high privilege users such as admin to upload arbitrary files by setting the any extension via the plugin's setting, which could be used by admins of multisite blog to upload PHP files for example."}]}, "generator": "WPScan CVE Generator", "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "CWE-434 Unrestricted Upload of File with Dangerous Type"}]}]}, "references": {"reference_data": [{"name": "https://wpscan.com/vulnerability/d18e695b-4d6e-4ff6-a060-312594a0d2bd", "refsource": "MISC", "url": "https://wpscan.com/vulnerability/d18e695b-4d6e-4ff6-a060-312594a0d2bd"}]}, "source": {"discovery": "EXTERNAL"}}}}, "cveMetadata": {"assignerOrgId": "1bfdd5d7-9bf6-4a53-96ea-42e2716d7a81", "assignerShortName": "WPScan", "cveId": "CVE-2022-3076", "datePublished": "2022-09-26T12:35:42", "dateReserved": "2022-09-01T00:00:00", "dateUpdated": "2022-09-26T12:35:42", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}