Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
Likebtn-like-button ProjectLikebtn-like-button

1 matches found

CVE
CVEadded 2021/04/05 6:27 p.m.62 views

CVE-2021-24150

CVE-2021-24150 affects the WordPress Like Button Rating plugin prior to 2.6.32. The vulnerability is an unauthenticated SSRF: the plugin’s likebtn_like_button.php exposes an AJAX hook (likebtn_prx) that proxies requests, and a weak host check (only requires the string likebtn.com) allows the serv...

7.5CVSS7.5AI score0.46263EPSS
Web