CVE-2022-50953
MediumCVSS 6.2Summary
The WordPress Plugin admin-word-count-column version 2.2 contains a local file read vulnerability that allows unauthenticated attackers to read arbitrary files by exploiting null byte injection in the path parameter.
Risk Assessment
Attackers can send GET requests to download-csv.php with a crafted path parameter, allowing them to bypass file restrictions and read sensitive data such as system configuration.
Recommendation
It is recommended to update the plugin to the latest version and implement additional security measures to minimize the risk of unauthorized file access.
Original NVD description (English source)
WordPress Plugin admin-word-count-column 2.2 contains a local file read vulnerability that allows unauthenticated attackers to read arbitrary files by exploiting null byte injection in the path parameter. Attackers can send GET requests to download-csv.php with a crafted path parameter containing directory traversal sequences and null bytes to bypass file restrictions and read sensitive files like system configuration.

