Vulnerabilities > CVE-2022-2367 - Unspecified vulnerability in WSM Downloader Project WSM Downloader 1.4.0
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
HIGH Integrity impact
NONE Availability impact
NONE Summary
The WSM Downloader WordPress plugin through 1.4.0 allows only specific popular websites to download images/files from, this can be bypassed due to the lack of good "link" parameter validation
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |