High severity8.8NVD Advisory· Published Apr 29, 2022· Updated Jun 17, 2026
CVE-2022-29451
CVE-2022-29451
Description
Cross-Site Request Forgery (CSRF) leading to Arbitrary File Upload vulnerability in Rara One Click Demo Import plugin <= 1.2.9 on WordPress allows attackers to trick logged-in admin users into uploading dangerous files into /wp-content/uploads/ directory.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: <=1.2.9
- Range: <= 1.2.9
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.