Security for everyone

CVE-2022-1391 Scanner

Detects 'Local File Inclusion (LFI)' vulnerability in Cab fare calculator plugin for WordPress affects v. before 1.0.4.

SCAN NOW

Short Info


Level

Critical

Type

Single Scan

Can be used by

Asset Owner

Estimated Time

10 sec

Scan only one

Url

Parent Category

CVE-2022-1391 Scanner Detail

The Cab fare calculator plugin for WordPress is a plugin used to help users calculate cab fares and provide an estimate for their ride. This plugin can be useful for both customers and drivers who use cabs as a mode of transportation. By using this plugin, users can quickly and easily calculate their fare based on a variety of factors such as distance, time of day, and other variables.

The CVE-2022-1391 vulnerability detected in the Cab fare calculator plugin before 1.0.4 is a Local File Inclusion issue that occurs because the plugin does not validate the controller parameter before using it in require statements. This flaw can allow attackers to include arbitrary files from the local file system or remote file systems through the use of an HTTP request. This can result in the execution of malicious code on the affected system.

When exploited, this vulnerability can lead to significant damage to a user's computer system or website, including data theft or destruction, installation of malicious software, or other malicious activities. It is critical to remediate this issue as soon as possible to avoid further damage from occurring.

In conclusion, the Cab fare calculator plugin for WordPress can be a useful tool for calculating cab fares on your website. However, it is important to be aware of the CVE-2022-1391 vulnerability detected in this plugin and take appropriate measures to protect your website and system from exploitation. By utilizing the pro features of the securityforeveryone.com platform, you can easily and quickly learn about vulnerabilities in your digital assets and take preemptive measures to ensure the highest level of security.

 

REFERENCES

cyber security services for everyone one. Free security tools, continuous vulnerability scanning and many more.
Try it yourself,
control security posture