CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

9 matches found

RedhatCVE•added 2025/05/22 10:18 p.m.•5 views

CVE-2022-1037

The EXMAGE WordPress plugin before 1.0.7 does to ensure that images added via URLs are external images, which could lead to a blind SSRF issue by using local URLs...

7.2CVSS6.7AI score0.00723EPSS

Exploits1References1

OSV•added 2022/04/18 6:15 p.m.•1 views

CVE-2022-1037

The EXMAGE WordPress plugin before 1.0.7 does to ensure that images added via URLs are external images, which could lead to a blind SSRF issue by using local URLs...

7.2CVSS5.8AI score0.00723EPSS

Exploits1References1

NVD•added 2022/04/18 6:15 p.m.•9 views

CVE-2022-1037

The EXMAGE WordPress plugin before 1.0.7 does to ensure that images added via URLs are external images, which could lead to a blind SSRF issue by using local URLs...

7.2CVSS0.00723EPSS

Exploits1References1

ATTACKERKB•added 2022/04/18 6:15 p.m.•1 views

CVE-2022-1037

The EXMAGE WordPress plugin before 1.0.7 does to ensure that images added via URLs are external images, which could lead to a blind SSRF issue by using local URLs...

7.2CVSS7.1AI score0.00723EPSS

Exploits1References2

Prion•added 2022/04/18 6:15 p.m.•12 views

Server side request forgery (ssrf)

The EXMAGE WordPress plugin before 1.0.7 does to ensure that images added via URLs are external images, which could lead to a blind SSRF issue by using local URLs...

6.5CVSS6.8AI score0.00723EPSS

Exploits1References1Affected Software1

CVE•added 2022/04/18 5:10 p.m.•68 views

CVE-2022-1037

CVE-2022-1037 affects the WordPress EXMAGE plugin prior to 1.0.7. The issue arises because images added via URLs are not consistently treated as external, enabling a blind SSRF through local URLs. Documented impact is a blind SSRF condition; no exploit details are provided beyond this description...

7.2CVSS6.8AI score0.00723EPSS

Exploits1References1Affected Software1

Cvelist•added 2022/04/18 5:10 p.m.•13 views

CVE-2022-1037 EXMAGE < 1.0.7 - Admin+ Blind SSRF

The EXMAGE WordPress plugin before 1.0.7 does to ensure that images added via URLs are external images, which could lead to a blind SSRF issue by using local URLs...

7.1AI score0.00723EPSS

Exploits1References1

CNNVD•added 2022/04/18 12:0 a.m.•2 views

WordPress plugin EXMAGE 代码问题漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A code issue vulnerability exists in the...

7.2CVSS7.2AI score0.00723EPSS

Exploits1References2

Patchstack•added 2022/03/28 12:0 a.m.•29 views

WordPress EXMAGE plugin <= 1.0.6 - Blind Server-Side Request Forgery (SSRF) vulnerability

Blind Server-Side Request Forgery SSRF vulnerability discovered by Luan Pedersini in WordPress EXMAGE plugin versions = 1.0.6. Solution Update the WordPress EXMAGE plugin to the latest available version at least 1.0.7...

7.2CVSS3.4AI score0.00723EPSS

Exploits1References3Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by