CVE-2021-24150 Like Button Rating < 2.6.32 - Unauthenticated Full-Read SSRF

2021-04-0518:27:42

CWE-918

WPScan

www.cve.org

0.019 Low

EPSS

Percentile

88.7%

JSON

The LikeBtn WordPress Like Button Rating ♥ LikeBtn WordPress plugin before 2.6.32 was vulnerable to Unauthenticated Full-Read Server-Side Request Forgery (SSRF).

CNA Affected

[
  {
    "product": "Like Button Rating ♥ LikeBtn",
    "vendor": "Unknown",
    "versions": [
      {
        "lessThan": "2.6.32",
        "status": "affected",
        "version": "2.6.32",
        "versionType": "custom"
      }
    ]
  }
]

References

wpscan.com/vulnerability/6bc6023f-a5e7-4665-896c-95afa5b638fb

0.019 Low

EPSS

Percentile

88.7%

JSON

Related for CVELIST:CVE-2021-24150