3 matches found
CVE-2022-0591
creationtimestamp| type| source ---|---|--- 2022-03-21 21:26:22+00:00| seen| https://t.me/cibsecurity/39320 2023-09-08 01:18:48+00:00| published-proof-of-concept| https://t.me/v3n0mhack/274 2023-09-10 01:35:17+00:00| published-proof-of-concept| https://t.me/DailyToolz/1018 2026-06-23...
CVE-2022-0591 Formcraft3 < 3.8.28 - Unauthenticated SSRF
The FormCraft WordPress plugin before 3.8.28 does not validate the URL parameter in the formcraft3get AJAX action, leading to SSRF issues exploitable by unauthenticated users...
CVE-2022-0591
FormCraft3 WordPress plugin versions prior to 3.8.28 are affected by an SSRF vulnerability. The issue stems from the formcraft3_get AJAX action not validating the URL parameter, allowing unauthenticated users to trigger server-side requests. Impact is described as SSRF with potential access to in...