Vulnerability Details CVE-2022-29446
Authenticated (administrator or higher role) Local File Inclusion (LFI) vulnerability in Wow-Company's Counter Box plugin <= 1.1.1 at WordPress.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.007
EPSS Ranking 71.6%
CVSS Severity
CVSS v3 Score 6.8
CVSS v2 Score 4.0
References
- https://patchstack.com/database/vulnerability/counter-box/wordpress-counter-box-plugin-1-1-1-authenticated-local-file-inclusion-lfi-vulnerability
- https://wordpress.org/plugins/counter-box/#developers
- https://patchstack.com/database/vulnerability/counter-box/wordpress-counter-box-plugin-1-1-1-authenticated-local-file-inclusion-lfi-vulnerability
- https://wordpress.org/plugins/counter-box/#developers
Products affected by CVE-2022-29446
-
cpe:2.3:a:wow-company:counter_box:-
-
cpe:2.3:a:wow-company:counter_box:1.0
-
cpe:2.3:a:wow-company:counter_box:1.1
-
cpe:2.3:a:wow-company:counter_box:1.1.1