The Web To Print Shop : uDraw WordPress plugin before 3.3.3 does not validate the url parameter in its udraw_convert_url_to_base64 AJAX action (available to both unauthenticated and authenticated users) before using it in the file_get_contents function and returning its content base64 encoded in the response. As a result, unauthenticated users could read arbitrary files on the web server (such as /etc/passwd, wp-config.php etc)
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: WPScan

Published: 2022-04-25T15:51:03

Updated: 2024-08-02T23:32:46.447Z

Reserved: 2022-02-17T00:00:00

Link: CVE-2022-0656

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2022-04-25T16:16:07.823

Modified: 2024-11-21T06:39:07.307

Link: CVE-2022-0656

cve-icon Redhat

No data.