CVE-2022-0218
HIGH EXPLOITED NUCLEIWP HTML Mail <3.0.9 - Info Disclosure
Title source: llmExploitation Summary
CVE-2022-0218 has been observed exploited in the wild (reported by VulnCheck KEV). A Nuclei detection template is also available.
Description
The WP HTML Mail WordPress plugin is vulnerable to unauthorized access which allows unauthenticated attackers to retrieve and modify theme settings due to a missing capability check on the /themesettings REST-API endpoint found in the ~/includes/class-template-designer.php file, in versions up to and including 3.0.9. This makes it possible for attackers with no privileges to execute the endpoint and add malicious JavaScript to a vulnerable WordPress site.
Nuclei Templates (1)
HTML Email Template Designer < 3.1 - Missing Authorization on Rest Route
MEDIUMby hexcat
References (2)
Core 2
Core References
Exploit, Third Party Advisory x_refsource_misc
https://www.wordfence.com/blog/2022/01/unauthenticated-xss-vulnerability-patched-in-html-email-template-designer-plugin/
Patch, Third Party Advisory x_refsource_misc
https://plugins.trac.wordpress.org/changeset/2656984/wp-html-mail/trunk/includes/class-template-designer.php
Scores
CVSS v3
8.3
EPSS
0.7051
EPSS Percentile
99.3%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
yes
Technical Impact
partial
Details
VulnCheck KEV
2022-01-13
CWE
CWE-79
CWE-862
Status
published
Products (1)
codemiq/wordpress_email_template_designer
< 3.0.9
Published
Feb 04, 2022
Tracked Since
Feb 18, 2026