Lucene search
PatchstackCVE-2022-42494HistoryNov 08, 2022 - 7:15 p.m.
CVE-2022-42494
2022-11-0819:15:16
CWE-918
Patchstack
web.nvd.nist.gov
39
5
cve-2022-42494
ssrf
vulnerability
all in one seo pro
wordpress
nvd
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N
EPSS
0.001
Percentile
28.4%
Server Side Request Forgery (SSRF) vulnerability in All in One SEO Pro plugin <= 4.2.5.1 on WordPress.
Affected configurations
Node
aioseoall_in_one_seoRange≤4.2.5.1wordpress
| Vendor | Product | Version | CPE |
|---|---|---|---|
| aioseo | all_in_one_seo | * | cpe:2.3:a:aioseo:all_in_one_seo:*:*:*:*:*:wordpress:*:* |
CNA Affected
[
{
"vendor": "Semper Plugins, LLC",
"product": "All in One SEO Pro (WordPress plugin)",
"versions": [
{
"version": "<= 4.2.5.1",
"status": "affected",
"lessThanOrEqual": "4.2.5.1",
"versionType": "custom"
}
]
}
]References
Social References
More
Related
openvas
openvas
WordPress All in One SEO Pack Plugin < 4.2.6 SSRF Vulnerability
2022-11-17 00:00:00
nvd
nvd
CVE-2022-42494
2022-11-08 19:15:16
cvelist
cvelist
patchstack
patchstack
prion
prion
Server side request forgery (ssrf)
2022-11-08 19:15:00
wpvulndb
wpvulndb
All in One SEO Pro < 4.2.6 - Admin+ SSRF
2022-10-27 00:00:00
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N
EPSS
0.001
Percentile
28.4%
Related for CVE-2022-42494