CVE-2022-1037

EXMAGE < 1.0.7 - Admin+ Blind SSRF

EPSS 1.3%CWE-918

The EXMAGE WordPress plugin before 1.0.7 does to ensure that images added via URLs are external images, which could lead to a blind SSRF issue by using local URLs

Produtos afetados

Unknown · EXMAGE – WordPress Image Links

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://wpscan.com/vulnerability/bd8555bd-8086-41d0-a1f7-3557bc3af957