cleantalk
Vulnerabilities and Security Researches

Amministrazione Aperta, CVE-2022-50956

CVE, Research URL

CVE-2022-50956

Home page URL

Security reports for Amministrazione Aperta

Application

Amministrazione Aperta

Published on
May 10, 2026
Research Description
WordPress Plugin amministrazione-aperta 3.7.3 contains a local file read vulnerability that allows unauthenticated attackers to read arbitrary files by exploiting insufficient input validation in the open parameter. Attackers can supply file paths through the open GET parameter in dispatcher.php to include and read sensitive files accessible to the web server.
Affected versions
max 3.7.3.
Status
vulnerable
Previous vulnerability researches
wpForo Forum (CVE-2026-40767) , May 02, 2026
wpForo Forum (CVE-2019-19109) , Jun 06, 2024
wpForo Forum (CVE-2022-40205) , Jun 06, 2024
wpForo Forum (CVE-2021-24406) , Jun 06, 2024
wpForo Forum (CVE-2022-38144) , Jun 06, 2024
New vulnerability
Contact Form Builder, Contact Widget (CVE-2022-50959) , May 12, 2026
wpForo Forum (CVE-2026-40798) , May 12, 2026
Picture Gallery – Frontend Image Uploads, AJAX Photo List (CVE-2021-47951) , May 12, 2026
Amministrazione Aperta (CVE-2022-50956) , May 12, 2026
Slider by Soliloquy – Responsive Image Slider for WordPress (CVE-2021-47922) , May 12, 2026