CVE-2022-2633

high-risk
Published 2022-09-06

The All-in-One Video Gallery plugin for WordPress is vulnerable to arbitrary file downloads and blind server-side request forgery via the 'dl' parameter found in the ~/public/video.php file in versions up to, and including 2.6.0. This makes it possible for unauthenticated users to download sensitive files hosted on the affected server and forge requests to the server.

Do I need to act?

!
89.7% chance of exploitation in next 30 days
EPSS score — higher than 10% of all CVEs
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
7
CVSS 7.5/10 High
NETWORK / LOW complexity

Affected Products (1)

All-In-One Video Gallery

Affected Vendors

Plugins360

References (10)

Patch https://plugins.trac.wordpress.org/browser/all-in-one-video-gallery/trunk/public...
Patch https://plugins.trac.wordpress.org/changeset/2768384/all-in-one-video-gallery/tr...
Patch https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&old...
https://www.wordfence.com/threat-intel/vulnerabilities/id/83b0534e-1b8d-46a8-969...
Third Party Advisory https://www.wordfence.com/vulnerability-advisories/#CVE-2022-2633
Patch https://plugins.trac.wordpress.org/browser/all-in-one-video-gallery/trunk/public...
Patch https://plugins.trac.wordpress.org/changeset/2768384/all-in-one-video-gallery/tr...
Patch https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&old...
https://www.wordfence.com/threat-intel/vulnerabilities/id/83b0534e-1b8d-46a8-969...
Third Party Advisory https://www.wordfence.com/vulnerability-advisories/#CVE-2022-2633
51
/ 100
high-risk
Severity 26/34 · High
Exploitability 20/34 · Moderate
Exposure 5/34 · Minimal