3 matches found
WordPress All in One SEO Pack Plugin < 4.2.6 SSRF Vulnerability
The WordPress plugin SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:aioseo:allinoneseo"; if description...
CVE-2022-42494 WordPress All in One SEO Pro plugin <= 4.2.5.1 - Server Side Request Forgery (SSRF) vulnerability
Server Side Request Forgery SSRF vulnerability in All in One SEO Pro plugin = 4.2.5.1 on WordPress...
CVE-2022-42494
Summary of the CVE-2022-42494 (All in One SEO Pro) : A SSRF vulnerability affects WordPress All in One SEO Pro plugin versions ≤ 4.2.5.1. The issue arises from insufficient validation when the plugin makes outbound requests, enabling an attacker to proxy requests from the vulnerable server. Sever...