0.001 Low
EPSS
Percentile
19.4%
The plugin does not validate a parameter before making a request to it, which could allow users with Author role and above to perform SSRF attack