CVE-2022-4057
Autoptimize < 3.1.0 - Sensitive Data Disclosure
The Autoptimize WordPress plugin before 3.1.0 uses an easily guessable path to store plugin's exported settings and logs.
We have discovered 7,643 live websites that are affected by CVE-2022-4057.
Affected Software
| Product |  Autoptimize |
| Category | Widgets |
| Vulnerable Versions |
|
| Total Vulnerable Versions | 1,307 |
| Vulnerable Domains | 7,643 live websites (10.29% of Autoptimize install base) |
Details
- Published - Jan 2, 2023
- Updated - Jul 19, 2023
Credits
- Raad Haddad of Cloudyrion GmbH (finder)
- WPScan (coordinator)
CWE
CVE References
CWE References
Countries
 United States | 1,961 websites |
 Germany | 902 websites |
 Russia | 459 websites |
 Japan | 448 websites |
 Poland | 364 websites |
 GB | 362 websites |
 France | 340 websites |
 Canada | 283 websites |
 Italy | 237 websites |
 Spain | 234 websites |
TLDs
| .com | 3,135 websites |
| .de | 551 websites |
| .ru | 363 websites |
| .org | 363 websites |
| .pl | 244 websites |
| .net | 206 websites |
| .co.uk | 188 websites |
| .it | 165 websites |
| .fr | 138 websites |
| .jp | 136 websites |
Vulnerable Versions
Vulnerable versions are highlighted in redWebsites affected by CVE-2022-4057
Top websites that are affected by CVE-2022-4057. Please click on the "Contact us" link to get more information.| Domain | Country | Rank | Contacts |
|---|---|---|---|
| ***.**********.com | United States | *** | |
| ************.com | United States | *,*** | |
| ***.******.com | United States | *,*** | |
| ***.****.de | Germany | *,*** | |
| **************.de | Germany | **,*** | |
| ***.**********.com | United States | **,*** | |
| ***.***********.org | United States | **,*** | |
| *********.com | United States | **,*** | |
| ******.com |  India | **,*** | |
| ***.***********.com | United States | **,*** |