Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
WordPress Plugin All-in-One WP Migration Arbitrary File Deletion - CVE-2022-1476 - Vulnerability Database
WP Plugin All In One Wp Migration

WordPress Plugin All-in-One WP Migration Arbitrary File Deletion - CVE-2022-1476

Medium
Reference: CVE-2022-1476
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2022-1476
Title: WordPress Plugin All-in-One WP Migration Arbitrary File Deletion
Overview:

WordPress Plugin All-in-One WP Migration is prone to a vulnerability that lets attackers delete arbitrary files because the application fails to properly verify user-supplied input. An attacker can exploit this vulnerability to delete arbitrary files in the context of the webserver process. WordPress Plugin All-in-One WP Migration version 7.58 is vulnerable prior versions may also be affected.