CVE-2022-50954 | cab-fare-calculator Plugin 1.0.3 on WordPress GET Parameter tblight.php controller filename control (Exploit 50843 / EDB-50843)

May 10, 2026 Yanac

A vulnerability labeled as problematic has been found in cab-fare-calculator Plugin 1.0.3 on WordPress. The impacted element is an unknown function of the file tblight.php of the component GET Parameter Handler. Executing a manipulation of the argument controller can lead to improper control of filename for include/require statement in php program (‘php remote file inclusion’).

This vulnerability is tracked as CVE-2022-50954. The attack can be launched remotely. Moreover, an exploit is present.VulDB Recent EntriesRead More