CVE-2022-2439

moderate-risk
Published 2024-09-24

The Easy Digital Downloads – Simple eCommerce for Selling Digital Files plugin for WordPress is vulnerable to deserialization of untrusted input via the 'upload[file]' parameter in versions up to, and including 3.3.3. This makes it possible for authenticated administrative users to call files using a PHAR wrapper, that will deserialize and call arbitrary PHP Objects that can be used to perform a variety of malicious actions granted a POP chain is also present.

Do I need to act?

~
1.0% chance of exploitation in next 30 days
EPSS score — moderate exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
7
CVSS 7.2/10 High
NETWORK / LOW complexity

Affected Products (1)

Affected Vendors

Awesomemotive

References (3)

Patch https://plugins.trac.wordpress.org/changeset/3154854/easy-digital-downloads/tags...
Patch https://plugins.trac.wordpress.org/changeset/3154854/easy-digital-downloads/tags...
Third Party Advisory https://www.wordfence.com/threat-intel/vulnerabilities/id/644c8702-08ad-4048-ae9...
34
/ 100
moderate-risk
Severity 26/34 · High
Exploitability 3/34 · Minimal
Exposure 5/34 · Minimal