Lucene search
HistoryNov 27, 2023 - 5:15 p.m.
CVE-2023-5974
wpb show core
ssrf
vulnerability
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
0.001 Low
EPSS
Percentile
43.5%
The WPB Show Core WordPress plugin through 2.2 is vulnerable to server-side request forgery (SSRF) via the path parameter.
Affected configurations
Node
wpb_show_core_projectwpb_show_coreRange≤2.2wordpress
Related
prion
prion
Server side request forgery (ssrf)
2023-11-27 17:15:00
cvelist
cvelist
cve
cve
CVE-2023-5974
2023-11-27 17:15:09
wpexploit
wpexploit
WPB Show Core <= 2.2 - Unauthenticated Server Side Request Forgery
2023-11-06 00:00:00
wpvulndb
wpvulndb
WPB Show Core <= 2.2 - Unauthenticated Server Side Request Forgery
2023-11-06 00:00:00
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
0.001 Low
EPSS
Percentile
43.5%
Related for NVD:CVE-2023-5974