0.0005 Low
EPSS
Percentile
18.2%
The plugin does not validate a parameter before making a request to it, which could allow users with a role of Administrator to perform an SSRF attack.