Admin Word Count Column

CVEs (2)

CVE	Vendor / Product	Sev	Risk	CVSS	EPSS	KEV	Published	Description
CVE-2022-50953	WordPress Admin Word Count Column	Med	0.40	6.2	—		Jun 8, 2026	WordPress Plugin admin-word-count-column 2.2 contains a local file read vulnerability that allows unauthenticated attackers to read arbitrary files by exploiting null byte injection in the path parameter. Attackers can send GET requests to download-csv.php with a crafted path…
CVE-2022-1390	WordPress Admin Word Count Column		0.07	—	0.91		Apr 25, 2022	The Admin Word Count Column WordPress plugin through 2.2 does not validate the path parameter given to readfile(), which could allow unauthenticated attackers to read arbitrary files on server running old version of PHP susceptible to the null byte technique. This could also…

CVE-2022-50953MedJun 8, 2026
WordPress
Admin Word Count Column
risk 0.40cvss 6.2epss —
WordPress Plugin admin-word-count-column 2.2 contains a local file read vulnerability that allows unauthenticated attackers to read arbitrary files by exploiting null byte injection in the path parameter. Attackers can send GET requests to download-csv.php with a crafted path…
CVE-2022-1390Apr 25, 2022
WordPress
Admin Word Count Column
risk 0.07cvss —epss 0.91
The Admin Word Count Column WordPress plugin through 2.2 does not validate the path parameter given to readfile(), which could allow unauthenticated attackers to read arbitrary files on server running old version of PHP susceptible to the null byte technique. This could also…