Lucene search

CVE-2022-42494 WordPress All in One SEO Pro plugin <= 4.2.5.1 - Server Side Request Forgery (SSRF) vulnerability

🗓️ 08 Nov 2022 18:32:33Reported by PatchstackType

SSRF vulnerability in All in One SEO Pro plugin on WordPress

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 7
Prion	Server side request forgery (ssrf)	8 Nov 202219:15	–	prion
Patchstack	WordPress All in One SEO Pro plugin <= 4.2.5.1 - Server Side Request Forgery (SSRF) vulnerability	28 Oct 202200:00	–	patchstack
CVE	CVE-2022-42494	8 Nov 202219:15	–	cve
WPVulnDB	All in One SEO Pro < 4.2.6 - Admin+ SSRF	27 Oct 202200:00	–	wpvulndb
CNVD	WordPress All in One SEO Pro Server-Side Request Forgery Vulnerability	10 Nov 202200:00	–	cnvd
NVD	CVE-2022-42494	8 Nov 202219:15	–	nvd
OpenVAS	WordPress All in One SEO Pack Plugin < 4.2.6 SSRF Vulnerability	17 Nov 202200:00	–	openvas

[
  {
    "vendor": "Semper Plugins, LLC",
    "product": "All in One SEO Pro (WordPress plugin)",
    "versions": [
      {
        "version": "<= 4.2.5.1",
        "status": "affected",
        "lessThanOrEqual": "4.2.5.1",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
aioseo	www.aioseo.com/changelog/
patchstack	www.patchstack.com/database/vulnerability/all-in-one-seo-pack-pro/wordpress-all-in-one-seo-pro-plugin-4-2-5-1-server-side-request-forgery-ssrf-vulnerability

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

08 Nov 2022 18:33Current

6.7Medium risk

Vulners AI Score6.7

CVSS33

EPSS0.00233

CWE-918