Lucene search
PatchstackCVELIST:CVE-2024-23500HistoryMar 28, 2024 - 5:54 a.m.
CVE-2024-23500 WordPress Kadence Blocks plugin <= 3.2.19 - Server Side Request Forgery (SSRF) vulnerability
2024-03-2805:54:44
CWE-918
Patchstack
www.cve.org
3
cve-2024-23500
wordpress
kadence blocks
ssrf
CVSS3
7.7
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N
EPSS
0
Percentile
9.0%
Server-Side Request Forgery (SSRF) vulnerability in Kadence WP Gutenberg Blocks by Kadence Blocks.This issue affects Gutenberg Blocks by Kadence Blocks: from n/a through 3.2.19.
CNA Affected
[
{
"collectionURL": "https://wordpress.org/plugins",
"defaultStatus": "unaffected",
"packageName": "kadence-blocks",
"product": "Gutenberg Blocks by Kadence Blocks",
"vendor": "Kadence WP",
"versions": [
{
"changes": [
{
"at": "3.2.20",
"status": "unaffected"
}
],
"lessThanOrEqual": "3.2.19",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]Related
wpvulndb
wpvulndb
cve
cve
CVE-2024-23500
2024-03-28 06:15:10
vulnrichment
vulnrichment
nvd
nvd
CVE-2024-23500
2024-03-28 06:15:10
CVSS3
7.7
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N
EPSS
0
Percentile
9.0%
Related for CVELIST:CVE-2024-23500