CVE-2022-4426
Description
The Mautic Integration for WooCommerce WordPress plugin before 1.0.3 does not have proper CSRF check when updating settings, and does not ensure that the options to be updated belong to the plugin, allowing attackers to make a logged in admin change arbitrary blog options via a CSRF attack.
- CVSS Version 3.1
CVE ID: CVE-2022-4426
Base Score: 4.3
Base Severity: MEDIUM
Vector String:CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
Impact Score: 1.4
Exploitability Score: 2.8
Content on GitHub
voidz0r | watchers:212
CVE-2022-44268
A PoC for the CVE-2022-44268 - ImageMagick arbitrary file read
Refrence: GitHub
duc-nt | watchers:270
CVE-2022-44268-ImageMagick-Arbitrary-File-Read-PoC
CVE-2022-44268 ImageMagick Arbitrary File Read - Payload Generator
Refrence: GitHub
kljunowsky | watchers:22
CVE-2022-44268
CVE-2022-44268 ImageMagick Arbitrary File Read - Proof of Concept exploit
Refrence: GitHub
y1nglamore | watchers:8
CVE-2022-44268-ImageMagick-Vulnerable-Docker-Environment
The vulnerable recurrence docker environment for CVE-2022-44268
Refrence: GitHub
Vulnmachines | watchers:7
imagemagick-CVE-2022-44268
Imagemagick CVE-2022-44268
Refrence: GitHub
jnschaeffer | watchers:5
cve-2022-44268-detector
Detect images that likely exploit CVE-2022-44268
Refrence: GitHub
agathanon | watchers:4
cve-2022-44268
Payload generator and extractor for CVE-2022-44268 written in Python.
Refrence: GitHub
entr0pie | watchers:4
CVE-2022-44268
PoC of Imagemagick's Arbitrary File Read
Refrence: GitHub
PanAdamski | watchers:3
CVE-2022-44268-automated
Refrence: GitHub
narekkay | watchers:2
auto-cve-2022-44268.sh
Automating Exploitation of CVE-2022-44268 ImageMagick Arbitrary File Read
Refrence: GitHub
adhikara13 | watchers:2
CVE-2022-44268-MagiLeak
Tools for working with ImageMagick to handle arbitrary file read vulnerabilities. Generate, read, and apply profile information to PNG files using a command-line interface.
Refrence: GitHub
chairat095 | watchers:2
CVE-2022-44268_By_Kyokito
CVE-2022-44268_By_Kyokito
Refrence: GitHub
Baikuya | watchers:2
CVE-2022-44268-PoC
CVE-2022-44268 PoC
Refrence: GitHub
NataliSemi | watchers:0
-CVE-2022-44268
Refrence: GitHub
Pog-Frog | watchers:0
cve-2022-44268
Refrence: GitHub
FlojBoj | watchers:0
CVE-2022-44268
ImageMagick 7.1.0-49 vulnerable to Information Disclosure
Refrence: GitHub
bhavikmalhotra | watchers:1
CVE-2022-44268-Exploit
Expoit for CVE-2022-44268
Refrence: GitHub
betillogalvanfbc | watchers:1
POC-CVE-2022-44268
Refrence: GitHub
nfm | watchers:0
heroku-CVE-2022-44268-reproduction
Refrence: GitHub
Ashifcoder | watchers:0
CVE-2022-44268-automated-poc
An information disclosure vulnerability that could be exploited to read arbitrary files from a server when parsing an image in Image Magic.
Refrence: GitHub
Vagebondcur | watchers:0
IMAGE-MAGICK-CVE-2022-44268
Refrence: GitHub
CygnusX-26 | watchers:0
CVE-2022-44268-fixed-PoC
Refrence: GitHub
atici | watchers:1
Exploit-for-ImageMagick-CVE-2022-44268
A bash script for easyly exploiting ImageMagick Arbitrary File Read Vulnerability CVE-2022-44268
Refrence: GitHub
Refrence: NVD