CVE: CVE-2022-4794 Name: Amazon Affiliate WordPress Plugin (aawp) Version: 3.12 Date: 2022-12-28 15:03:00 Advisory: https://wpscan.com/vulnerability/feb4580d-df15-45c8-b59e-ad406e4b064c Type: Unsafe URL Handling Exploit: public/image.php?url=aHR0cHM6Ly... See https://blog.daniel-ruf.de/dont-blindly-trust-filter-validate-url/