Admin Word Count Column
Approved changes feed: RSS · Atom
cpe:2.3:a:admin_word_count_column_project:admin_word_count_column:*:*:*:*:*:wordpress:*:*
part: a version: * update: *
| Vendor | Admin Word Count Column Project (2cbc8fb5-11c7-5ab5-a5f3-3ab4714073ea) |
|---|---|
| Product | Admin Word Count Column (b139d4ba-540b-57fa-8bdc-d23faa039605) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | wordpress |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2022-1390 |
vulnerable | 2026-06-08 05:39:13.094808 |
Admin Word Count Column <= 2.2 - Unauthenticated Arbitrary File Read
The Admin Word Count Column WordPress plugin through 2.2 does not validate the path parameter given to readfile(), which could allow unauthenticated attackers to read arbitrary files on server running old version of PHP susceptible to the null byte technique. This could also lead to RCE by using a Phar Deserialization technique
Published: 2022-04-25T15:51:24.000Z
Updated: 2024-08-03T00:03:06.263Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.