Medium severity5.3NVD Advisory· Published Jan 2, 2023· Updated Jun 17, 2026
CVE-2022-4417
CVE-2022-4417
Description
The WP Cerber Security, Anti-spam & Malware Scan WordPress plugin before 9.3.3 does not properly block access to the REST API users endpoint when the blog is in a subdirectory, which could allow attackers to bypass the restriction in place and list users
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: <9.3.3
Patches
Vulnerability mechanics
References
1- wpscan.com/vulnerability/a8c6b077-ff93-4c7b-970f-3be4d7971aa5nvdExploitVendor Advisory
News mentions
0No linked articles in our index yet.