CVE-2022-0656

Public Exploit

uDraw < 3.3.3 - Unauthenticated Arbitrary File Access

Description

The Web To Print Shop : uDraw WordPress plugin before 3.3.3 does not validate the url parameter in its udraw_convert_url_to_base64 AJAX action (available to both unauthenticated and authenticated users) before using it in the file_get_contents function and returning its content base64 encoded in the response. As a result, unauthenticated users could read arbitrary files on the web server (such as /etc/passwd, wp-config.php etc)

References

Link	Tags
https://wpscan.com/vulnerability/925c4c28-ae94-4684-a365-5f1e34e6c151	third party advisory exploit

Frequently Asked Questions

What is the severity of CVE-2022-0656?: CVE-2022-0656 has been scored as a high severity vulnerability.
How to fix CVE-2022-0656?: To fix CVE-2022-0656, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2022-0656 being actively exploited in the wild?: It is possible that CVE-2022-0656 is being exploited or will be exploited in a near future based on public information. According to its EPSS score, there is a ~68% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2022-0656?: CVE-2022-0656 affects Unknown Web To Print Shop : uDraw.

This platform uses data from the NIST NVD, MITRE CVE, MITRE CWE, First.org and CISA KEV but is not endorsed or certified by these entities. CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site.

Description

Category

CWE-552 – Files or Directories Accessible to External Parties

References

Frequently Asked Questions