mirror of
https://github.com/gobysec/GobyVuls.git
synced 2025-05-06 10:41:40 +00:00
13 lines
1.4 KiB
Markdown
13 lines
1.4 KiB
Markdown
|
## Wordpress wpjobboard plugin wpjobboard directory traversal vulnerability (CVE-2022-2544)
|
|||
|
|
|
|||
|
|
| **Vulnerability** | **Wordpress wpjobboard plugin wpjobboard directory traversal vulnerability (CVE-2022-2544)** |
|
|||
|
|
| :----: | :-----|
|
|||
|
|
| **Chinese name** | Wordpress wpjobboard 插件 wpjobboard 页面目录遍历漏洞(CVE-2022-2544) |
|
|||
|
|
| **CVSS core** | 7.5 |
|
|||
|
|
| **FOFA Query** (click to view the results directly)| [body="wp-content/plugins/wpjobboard"](https://en.fofa.info/result?qbase64=Ym9keT0id3AtY29udGVudC9wbHVnaW5zL3dwam9iYm9hcmQi) |
|
|||
|
|
| **Number of assets affected** | 1201 |
|
|||
|
|
| **Description** | Wpjobboard is a plugin of Wordpress. The Wpjobboard plug-in allows website owners to embed payment forms and make payments via Visa, American Express, Discover and Mastercard through their Click&Lead merchant accounts.The Wpjobboard plug-in has a directory traversal vulnerability, through which an attacker can view sensitive directories and files in the server, control the entire system, and finally cause the system to be in an extremely insecure state. |
|
|||
|
|
| **Impact** | The Wpjobboard plug-in has a directory traversal vulnerability, through which an attacker can view sensitive directories and files in the server, control the entire system, and finally cause the system to be in an extremely insecure state. |
|
|||
|
|
|
|||
|
|
|