GHSA-9vwr-ww7h-qvv8

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

WordPress before 5.2.4 has a Server Side Request Forgery (SSRF) vulnerability because Windows paths are mishandled during certain validation of relative URLs.

Ссылки

EPSS

Процентиль: 89%

0.04761

Низкий

9.8 Critical

CVSS3

CVE ID

CVE-2019-17670

Дефекты

CWE-918

Связанные уязвимости

CVE-2019-17670

CVSS3: 9.8

ubuntu

больше 5 лет назад

WordPress before 5.2.4 has a Server Side Request Forgery (SSRF) vulnerability because Windows paths are mishandled during certain validation of relative URLs.

CVE-2019-17670

CVSS3: 9.8

nvd

больше 5 лет назад

WordPress before 5.2.4 has a Server Side Request Forgery (SSRF) vulnerability because Windows paths are mishandled during certain validation of relative URLs.

CVE-2019-17670

CVSS3: 9.8

debian

больше 5 лет назад

WordPress before 5.2.4 has a Server Side Request Forgery (SSRF) vulner ...

EPSS

Процентиль: 89%

0.04761

Низкий

9.8 Critical

CVSS3

CVE ID

CVE-2019-17670

Дефекты

CWE-918