CVSS: 7.2EPSS: 0%CPEs: 1EXPL: 0CVE-2022-29448 – WordPress Herd Effects plugin <= 5.2 - Local File Inclusion (LFI) vulnerability
https://notcve.org/view.php?id=CVE-2022-29448
Authenticated (admin or higher user role) Local File Inclusion (LFI) vulnerability in Wow-Company's Herd Effects plugin <= 5.2 at WordPress. Una vulnerabilidad de Inclusión de Archivos Locales (LFI) autenticado (rol de administrador o usuario superior) en el plugin Herd Effects de Wow-Company versiones anteriores a 5.2 incluyéndola, en WordPress • https://patchstack.com/database/vulnerability/mwp-herd-effect/wordpress-herd-effects-plugin-5-2-local-file-inclusion-lfi-vulnerability https://wordpress.org/plugins/mwp-herd-effect/#developers • CWE-98: Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') CWE-706: Use of Incorrectly-Resolved Name or Reference •