CVE Catalog

CVE-2022-50953

MediumCVSS 6.2
Published: Updated: Translated: NVD NIST

Summary

The WordPress Plugin admin-word-count-column version 2.2 contains a local file read vulnerability that allows unauthenticated attackers to read arbitrary files by exploiting null byte injection in the path parameter.

Risk Assessment

Attackers can send GET requests to download-csv.php with a crafted path parameter, allowing them to bypass file restrictions and read sensitive data such as system configuration.

Recommendation

It is recommended to update the plugin to the latest version and implement additional security measures to minimize the risk of unauthorized file access.

Original NVD description (English source)

WordPress Plugin admin-word-count-column 2.2 contains a local file read vulnerability that allows unauthenticated attackers to read arbitrary files by exploiting null byte injection in the path parameter. Attackers can send GET requests to download-csv.php with a crafted path parameter containing directory traversal sequences and null bytes to bypass file restrictions and read sensitive files like system configuration.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS