CVE-2022-0591
FormCraft3 WordPress plugin versions prior to 3.8.28 are affected by an SSRF vulnerability. The issue stems from the formcraft3_get AJAX action not validating the URL parameter, allowing unauthenticated users to trigger server-side requests. Impact is described as SSRF with potential access to in...