The All-in-One Video Gallery plugin for WordPress is vulnerable to arbitrary file downloads and blind server-side request forgery via the 'dl' parameter found in the ~/public/video.php file in versions up to, and including 2.6.0. This makes it possible for unauthenticated users to download sensitive files hosted on the affected server and forge requests to the server.
References
Configurations
History
21 Nov 2024, 07:01
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.5 |
References | () https://plugins.trac.wordpress.org/browser/all-in-one-video-gallery/trunk/public/video.php#L227 - Patch, Third Party Advisory | |
References | () https://plugins.trac.wordpress.org/changeset/2768384/all-in-one-video-gallery/trunk/public/video.php - Patch, Third Party Advisory | |
References | () https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&old=2744708%40all-in-one-video-gallery&new=2744708%40all-in-one-video-gallery&sfp_email=&sfph_mail= - Patch, Third Party Advisory | |
References | () https://www.wordfence.com/threat-intel/vulnerabilities/id/83b0534e-1b8d-46a8-9698-e7ca73e5ab57?source=cve - | |
References | () https://www.wordfence.com/vulnerability-advisories/#CVE-2022-2633 - Third Party Advisory |
11 Jan 2024, 09:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
Information
Published : 2022-09-06 18:15
Updated : 2024-11-21 07:01
NVD link : CVE-2022-2633
Mitre link : CVE-2022-2633
CVE.ORG link : CVE-2022-2633
JSON object : View
Products Affected
plugins360
- all-in-one_video_gallery
CWE
CWE-610
Externally Controlled Reference to a Resource in Another Sphere