CVE-2022-0779

MEDIUM

User Meta WordPress Plugin < 2.4.4 - Path Traversal via um_show_uploaded_file AJAX Action

Title source: llm
STIX 2.1

Description

The User Meta WordPress plugin before 2.4.4 does not validate the filepath parameter of its um_show_uploaded_file AJAX action, which could allow low privileged users such as subscriber to enumerate the local files on the web server via path traversal payloads

References (1)

Core 1
Core References
Exploit, Third Party Advisory x_refsource_misc
https://wpscan.com/vulnerability/9d4a3f09-b011-4d87-ab63-332e505cf1cd

Scores

CVSS v3 6.5
EPSS 0.0223
EPSS Percentile 80.6%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Details

CWE
CWE-22
Status published
Products (1)
user-meta/user_meta_user_profile_builder_and_user_management < 2.4.4
Published Jun 08, 2022
Tracked Since Feb 18, 2026