Lucene search
PatchstackCVE-2022-45368HistoryMay 17, 2024 - 7:15 a.m.
CVE-2022-45368
2024-05-1707:15:47
CWE-22
Patchstack
web.nvd.nist.gov
33
cve-2022-45368
improper limitation
path traversal
lenderd 1003
mortgage application
nvd
CVSS3
7.7
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N
AI Score
6.7
Confidence
High
EPSS
0
Percentile
10.5%
Improper Limitation of a Pathname to a Restricted Directory (‘Path Traversal’) vulnerability in Lenderd 1003 Mortgage Application allows Relative Path Traversal.This issue affects 1003 Mortgage Application: from n/a through 1.75.
Affected configurations
Node
lenderd1003_mortgage_applicationRange≤1.75wordpress
| Vendor | Product | Version | CPE |
|---|---|---|---|
| lenderd | 1003_mortgage_application | * | cpe:2.3:a:lenderd:1003_mortgage_application:*:*:*:*:*:wordpress:*:* |
CNA Affected
[
{
"collectionURL": "https://wordpress.org/plugins",
"defaultStatus": "unaffected",
"packageName": "1003-mortgage-application",
"product": "1003 Mortgage Application",
"vendor": "Lenderd",
"versions": [
{
"changes": [
{
"at": "1.80",
"status": "unaffected"
}
],
"lessThanOrEqual": "1.75",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]Related
cvelist
cvelist
vulnrichment
vulnrichment
nvd
nvd
CVE-2022-45368
2024-05-17 07:15:47
wordfence
wordfence
CVSS3
7.7
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N
AI Score
6.7
Confidence
High
EPSS
0
Percentile
10.5%
Related for CVE-2022-45368