CVE-2022-1037

EXMAGE < 1.0.7 - Admin+ Blind SSRF

EPSS 1.3%CWE-918

The EXMAGE WordPress plugin before 1.0.7 does to ensure that images added via URLs are external images, which could lead to a blind SSRF issue by using local URLs

Affected products

Unknown · EXMAGE – WordPress Image Links

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://wpscan.com/vulnerability/bd8555bd-8086-41d0-a1f7-3557bc3af957