CVE-2022-1560
Amministrazione Aperta <= 3.7.3 - Admin+ Local File Inclusion
mediumImproper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion')
5.4
CVSS Score
5.4
CVSS Score
medium
Severity
3.8
Patched in
671d
Time to patch
Description
The Amministrazione Aperta WordPress plugin through 3.7.3 does not validate the open parameter before using it in an include statement, leading to a Local File Inclusion issue. The original advisory mentions that unauthenticated users can exploit this, however the affected file generates a fatal error when accessed directly and the affected code is not reached. The issue can be exploited via the dashboard when logged in as an admin, or by making a logged in admin open a malicious link
CVSS Vector Breakdown
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:NAttack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
Required
Scope
Unchanged
Low
Confidentiality
Low
Integrity
None
Availability
Technical Details
Affected versions
<=3.7.3PublishedMarch 23, 2022
Last updatedJanuary 22, 2024
Affected pluginamministrazione-aperta
Check if your site is affected.
Run a free security audit to detect vulnerable plugins, outdated versions, and misconfigurations.