Lucene search
PatchstackCVELIST:CVE-2022-45829HistoryDec 06, 2022 - 9:53 p.m.
CVE-2022-45829 WordPress Easy WP SMTP Plugin <= 1.5.1 is vulnerable to Arbitrary File Deletion
2022-12-0621:53:04
CWE-22
Patchstack
www.cve.org
3
cve-2022-45829
arbitrary file deletion
auth
path traversal
wordpress
CVSS3
8.7
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:N/I:H/A:H
AI Score
9.2
Confidence
High
EPSS
0.001
Percentile
34.8%
Auth. Path Traversal vulnerability inย Easy WP SMTP plugin <= 1.5.1 atย WordPress.
CNA Affected
[
{
"collectionURL": "https://wordpress.org/plugins",
"defaultStatus": "unaffected",
"product": "Easy WP SMTP",
"vendor": "WPecommerce, Alexanderfoxc",
"versions": [
{
"changes": [
{
"at": "1.5.2",
"status": "unaffected"
}
],
"lessThanOrEqual": "1.5.1",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]Related
prion
prion
Path traversal
2022-12-06 22:15:00
wpvulndb
wpvulndb
Easy WP SMTP < 1.5.2 - Admin+ Arbitrary File Deletion
2022-11-30 00:00:00
nvd
nvd
CVE-2022-45829
2022-12-06 22:15:10
cve
cve
CVE-2022-45829
2022-12-06 22:15:10
nessus
nessus
Easy WP SMTP Plugin for WordPress < 1.5.2 Multiple Vulnerabilities
2023-09-13 00:00:00
openvas
openvas
WordPress Easy WP SMTP Plugin < 1.5.2 Multiple Vulnerabilities
2022-12-07 00:00:00
CVSS3
8.7
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:N/I:H/A:H
AI Score
9.2
Confidence
High
EPSS
0.001
Percentile
34.8%
Related for CVELIST:CVE-2022-45829