CVE-2022-1391
N/A
N/A
Summary
The Cab fare calculator WordPress plugin before 1.0.4 does not validate the controller parameter before using it in require statements, which could lead to Local File Inclusion issues.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Unknown | Cab fare calculator | 1.0.4 < 1.0.4 | affected |
Weaknesses
- CWE-22: CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
ADP Enrichment
CVE Program Container
Additional References
- https://wpscan.com/vulnerability/680121fe-6668-4c1a-a30d-e70dd9be5aac
- https://packetstormsecurity.com/files/166533/
References
- https://wpscan.com/vulnerability/680121fe-6668-4c1a-a30d-e70dd9be5aac
- https://packetstormsecurity.com/files/166533/
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.