WPIDE – File Manager & Code Editor, CVE-2022-2261

CVE, Research URL: CVE-2022-2261
Home page URL: Security reports for WPIDE – File Manager & Code Editor
Application: WPIDE – File Manager & Code Editor
Published on: Aug 29, 2022
Research Description: The WPIDE WordPress plugin before 3.0 does not sanitize and validate the filename parameter before using it in a require statement in the admin dashboard, leading to a Local File Inclusion issue.
Affected versions: max 3.0.
Status: vulnerable

WPIDE &#8211; File Manager &amp; Code Editor, CVE-2022-2261