CVE-2022-1390— Admin Word Count Column <= 2.2 - Unauthenticated Arbitrary File Read

EPSS 91.15% · P100 Updated Feb 25, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2022-1390

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

Admin Word Count Column <= 2.2 - Unauthenticated Arbitrary File Read

Source: NVD (National Vulnerability Database)

Vulnerability Description

The Admin Word Count Column WordPress plugin through 2.2 does not validate the path parameter given to readfile(), which could allow unauthenticated attackers to read arbitrary files on server running old version of PHP susceptible to the null byte technique. This could also lead to RCE by using a Phar Deserialization technique

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

对路径名的限制不恰当(路径遍历)

Source: NVD (National Vulnerability Database)

Vulnerability Title

WordPress plugin Admin Word Count Column路径遍历漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

WordPress等都是WordPress基金会的产品。WordPress是一套使用PHP语言开发的博客平台。WordPress plugin是一个应用插件。PHP等都是的产品。PHP是一种在服务器端执行的脚本语言。 WordPress plugin Admin Word Count Column 存在路径遍历漏洞，该漏洞源于插件不验证赋予 readfile() 的路径参数，这可能允许未经身份验证的攻击者读取运行易受空字节技术影响的旧版本 PHP 的服务器上的任意文件。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Shenlong Deep Dive — AI Deep Analysis

10-question deep dive: root cause, exploitation, mitigation, urgency. Read summary free, full version requires login.

Read summary Full analysis (login)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
Unknown	Admin Word Count Column	2.2 ~ 2.2	-

II. Public POCs for CVE-2022-1390

#	POC Description	Source Link	Shenlong Link
1	The plugin does not validate the path parameter given to readfile(), which could allow unauthenticated attackers to read arbitrary files on server running old version of PHP susceptible to the null byte technique. This could also lead to RCE by using a Phar Deserialization technique.	https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2022/CVE-2022-1390.yaml	POC Details

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2022-1390

请登录查看更多情报信息。

https://wpscan.com/vulnerability/6293b319-dc4f-4412-9d56-55744246c990x_refsource_MISC
https://packetstormsecurity.com/files/166476/x_refsource_MISC
https://nvd.nist.gov/vuln/detail/CVE-2022-1390

Same Patch Batch · Unknown · 2022-04-25 · 32 CVEs total

CVE-2022-0657		5 Stars Rating Funnel < 1.2.53 - Unauthenticated SQLi
CVE-2022-1396		Donorbox < 7.1.7 - Admin+ Stored Cross-Site Scripting
CVE-2022-1392		Videos sync PDF <= 1.7.4 - Unauthenticated LFI
CVE-2022-1391		Cab fare calculator < 1.0.4 - Unauthenticated LFI
CVE-2022-1228		Opensea < 1.0.3 - Admin+ Stored XSS
CVE-2022-1156		Books & Papers <= 0.20210223 - Admin+ Stored Cross-Site Scripting
CVE-2022-1153		LayerSlider < 7.1.2 - Admin+ Stored Cross-Site Scripting
CVE-2022-1152		Menubar < 5.8 - Reflected Cross-Site Scripting
CVE-2022-1094		Amr Users < 4.59.4 - Admin+ Stored Cross-Site Scripting
CVE-2022-1092		myCred < 2.4.4 - Subscriber+ Import/Export to Email Address Disclosure
CVE-2022-1027		Page Restriction WordPress < 1.2.7 - Admin+ Stored Cross-Site Scripting
CVE-2022-0953		Anti-Malware Security and Brute-Force Firewall < 4.20.96 - Reflected Cross-Site Scripting
CVE-2022-0876		Social comments by WpDevArt < 2.5.0 - Admin+ Stored Cross-Site Scripting
CVE-2022-0782		Donations <= 1.8 - Unauthenticated SQLi
CVE-2022-0769		Users Ultra <= 3.1.0 - Unauthenticated SQL Injection
CVE-2022-0693		Master Elements <= 8.0 - Unauthenticated SQLi
CVE-2021-24800		DW Question & Answer Pro <= 1.3.4 - Arbitrary Comment Edition via IDOR
CVE-2022-0656		uDraw < 3.3.3 - Unauthenticated Arbitrary File Access
CVE-2022-0634		ThirstyAffiliates < 3.10.5 - Subscriber+ unauthorized image upload + CSRF
CVE-2022-0541		Flo Launch < 2.4.1 - Missing Authentication Allow Full Site Takeover

Showing top 20 of 32 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same vendor: Unknown

Same weakness: CWE-22

V. Comments for CVE-2022-1390

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2022-1390— Admin Word Count Column <= 2.2 - Unauthenticated Arbitrary File Read

I. Basic Information for CVE-2022-1390

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Shenlong Deep Dive — AI Deep Analysis

Affected Products

II. Public POCs for CVE-2022-1390

III. Intelligence Information for CVE-2022-1390

Same Patch Batch · Unknown · 2022-04-25 · 32 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2022-1390

Leave a comment