Zercurity data services
  • Expand groupSummary
  • Applications (0)
  • Packages (0)
  • System updates (0)
  • Operating systems (0)

CVE-2022-2354

Description
The WP-DBManager WordPress plugin before 2.80.8 does not prevent administrators from running arbitrary commands on the server in multisite installations, where only super-administrators should.
  • Risk: 72
CVSSv3
    CVSSv2

      Raw Object

      {
  "uuid": "12177b03-530e-7945-105a-470b6773535e",
  "name": "CVE-2022-2354",
  "description": "The WP-DBManager WordPress plugin before 2.80.8 does not prevent administrators from running arbitrary commands on the server in multisite installations, where only super-administrators should.",
  "cvss": null,
  "score": 0,
  "severity": "NONE",
  "cvss3": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
  "score3": 7.2,
  "severity3": "HIGH",
  "applications": [],
  "packages": [],
  "updates": [],
  "os": [],
  "risk": 72,
  "created_at": "2022-08-15T11:21:00+00:00",
  "updated_at": "2022-08-16T18:33:00+00:00",
  "deleted_at": null
}