CVE-2014-9292
CVE-2014-9292 describes a server-side request forgery (SSRF) in the WordPress plugin Jrss Widget (proxy.php) up to version 1.2. The vulnerability allows unauthenticated remote actors to cause outbound requests and enumerate open ports via the url parameter. Affected product: WordPress/JRSS Widget...