AI Score
Confidence
High
EPSS
Percentile
52.6%
Description The plugin does not validate a parameter before making a request to it via the notify_ping_remote function, allowing any authenticated users, such as subscriber to perform SSRF attack