Lucene search
N/APATCHSTACK:4520A142E6EB20FDDE61EE989E8E35EEHistoryFeb 05, 2016 - 12:00 a.m.
WordPress <= 4.4.1 - SSRF
2016-02-0500:00:00
N/A
patchstack.com
8
0.013 Low
EPSS
Percentile
86.0%
The vulnerability allows an attacker to conduct these server-side request forgery attacks via a zero value in the first octet of an IPv4 address in the “u” parameter to wp-admin/press-this.php.
Solution
Update WordPress.
Related
veracode
veracode
Server-Side Request Forgery (SSRF)
2017-07-28 00:24:52
cvelist
cvelist
CVE-2016-2222
2016-05-22 01:00:00
wpvulndb
wpvulndb
WordPress 3.7-4.4.1 - Local URIs Server Side Request Forgery (SSRF)
2016-02-02 00:00:00
prion
prion
Server side request forgery (ssrf)
2016-05-22 01:59:00
nvd
nvd
CVE-2016-2222
2016-05-22 01:59:15
cve
cve
CVE-2016-2222
2016-05-22 01:59:15
ubuntucve
ubuntucve
CVE-2016-2222
2016-05-22 00:00:00
debiancve
debiancve
CVE-2016-2222
2016-05-22 01:59:15
nessus
nessus
Debian DSA-3472-1 : wordpress - security update
2016-02-09 00:00:00
Debian DLA-418-1 : wordpress security update
2016-02-17 00:00:00
WordPress < 4.4.2 Multiple Vulnerabilities
2016-02-19 00:00:00
freebsd
freebsd
wordpress -- multiple vulnerabilities
2016-02-02 00:00:00
openvas
openvas
Debian Security Advisory DSA 3472-1 (wordpress - security update)
2016-02-08 00:00:00
Debian: Security Advisory (DSA-3472-1)
2016-02-07 00:00:00
Debian: Security Advisory (DLA-418-1)
2023-03-08 00:00:00
osv
osv
wordpress - security update
2016-02-17 00:00:00
wordpress - security update
2016-02-08 00:00:00
debian
debian
[SECURITY] [DSA 3472-1] wordpress security update
2016-02-08 20:25:09
[SECURITY] [DLA 418-1] wordpress security update
2016-02-16 23:03:46
[SECURITY] [DSA 3472-1] wordpress security update
2016-02-08 20:25:09