Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
patchstackLuan PedersiniPATCHSTACK:33D1A89C27B999AAB81B1DC075D7EA95
HistoryApr 19, 2022 - 12:00 a.m.

WordPress External Media without Import plugin <= 1.1.2 - Server-Side Request Forgery (SSRF) vulnerability

2022-04-1900:00:00
Luan Pedersini
patchstack.com
13

0.005 Low

EPSS

Percentile

76.4%

JSON

Server-Side Request Forgery (SSRF) vulnerability discovered by Luan Pedersini in WordPress External Media without Import plugin (versions <= 1.1.2).

Solution

Deactivate and delete. This plugin has been closed as of March 28, 2022 and is not available for download. This closure is temporary, pending a full review.

CPENameOperatorVersion
external media without importle1.1.2

Related

cnvd 1
cvelist 1
prion 1
cve 1
nuclei 1
nvd 1
cnvd
cnvd
WordPress External Media without Imports plugin服务端请求伪造漏洞
2022-05-18 00:00:00
cvelist
cvelist
CVE-2022-1398 External Media without Import <= 1.1.2 - Subscriber+ Blind SSRF
2022-05-16 14:30:53
prion
prion
Server side request forgery (ssrf)
2022-05-16 15:15:00
cve
cve
CVE-2022-1398
2022-05-16 15:15:09
nuclei
nuclei
External Media without Import <=1.1.2 - Authenticated Blind Server-Side Request Forgery
2023-03-18 22:07:09
nvd
nvd
CVE-2022-1398
2022-05-16 15:15:09

0.005 Low

EPSS

Percentile

76.4%

JSON
Related for PATCHSTACK:33D1A89C27B999AAB81B1DC075D7EA95
cnvd1cvelist1prion1cve1nuclei1nvd1