Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 10:24 p.m.10 views

CVE-2022-2352

The Post SMTP Mailer/Email Log WordPress plugin before 2.1.7 does not have proper authorisation in some AJAX actions, which could allow high privilege users such as admin to perform blind SSRF on multisite installations for example...

7.2CVSS6.7AI score0.01039EPSS
Exploits2References1
Cvelist
Cvelist
added 2022/09/26 12:35 p.m.26 views

CVE-2022-2352 Post SMTP < 2.1.7 - Admin+ Blind SSRF

The Post SMTP Mailer/Email Log WordPress plugin before 2.1.7 does not have proper authorisation in some AJAX actions, which could allow high privilege users such as admin to perform blind SSRF on multisite installations for example...

7AI score0.01039EPSS
Exploits2References1
OSV
OSV
added 2022/09/26 12:35 p.m.7 views

CVE-2022-2352 Post SMTP < 2.1.7 - Admin+ Blind SSRF

The Post SMTP Mailer/Email Log WordPress plugin before 2.1.7 does not have proper authorisation in some AJAX actions, which could allow high privilege users such as admin to perform blind SSRF on multisite installations for example...

7.2CVSS7.1AI score0.01039EPSS
Exploits2References3
Vulnrichment
Vulnrichment
added 2022/09/26 12:35 p.m.8 views

CVE-2022-2352 Post SMTP < 2.1.7 - Admin+ Blind SSRF

The Post SMTP Mailer/Email Log WordPress plugin before 2.1.7 does not have proper authorisation in some AJAX actions, which could allow high privilege users such as admin to perform blind SSRF on multisite installations for example...

6.9AI score0.01039EPSS
Exploits2References1
CVE
CVE
added 2022/09/26 12:35 p.m.87 views

CVE-2022-2352

CVE-2022-2352 affects the WordPress Post SMTP Mailer/Email Log plugin prior to 2.1.7. The issue is lack of proper authorization in certain AJAX actions, enabling high-privilege users (e.g., admins) to perform blind SSRF on multisite installations. Remediation is to update to version 2.1.7 or late...

7.2CVSS6.8AI score0.01039EPSS
Exploits2References1Affected Software1
Rows per page
Query Builder