CVE-2022-4063
Published: 19 December 2022
Summary
CVE-2022-4063 is a critical-severity Path Traversal (CWE-22) vulnerability in Pluginus Inpost Gallery. Its CVSS base score is 9.8 (Critical).
Operationally, ranked in the top 0.5% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.
Deeper analysis
The InPost Gallery WordPress plugin before version 2.1.4.1 is affected by CVE-2022-4063, a path traversal issue (CWE-22) that arises from insecure use of PHP's extract() function when rendering HTML views. This flaw permits forced inclusion of arbitrary files and URLs and carries a CVSS 3.1 score of 9.8.
Unauthenticated remote attackers can exploit the vulnerability over the network to include malicious files, resulting in arbitrary code execution on the server with full confidentiality, integrity, and availability impact.
The referenced WPScan advisory identifies the affected plugin versions and indicates that the issue is resolved in 2.1.4.1 and later releases.
The EPSS score for this CVE currently stands at 0.8804 with a recorded peak of 0.9072.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2022-51440
Vulnerability details
The InPost Gallery WordPress plugin before 2.1.4.1 insecurely uses PHP's extract() function when rendering HTML views, allowing attackers to force the inclusion of malicious files & URLs, which may enable them to run code on servers.
- CWE(s)
Related Threats
No named actor attribution yet. ATT&CK technique mapping in progress for this CVE.
Affected Assets
Mitigating Controls
Likely Mitigating Controls AI
Per-CVE control mapping for this CVE has not run yet; the list below is derived from the weakness types (CWEs) cited in the NVD entry.
Validates pathnames and filenames to prevent traversal outside intended directories.