CVE-2022-4794 Information

Description

The AAWP WordPress plugin before 3.12.3 can be used to abuse trusted domains to load malware or other files through it (Reflected File Download) to bypass firewall rules in companies.

Reference

https://wpscan.com/vulnerability/feb4580d-df15-45c8-b59e-ad406e4b064c