Описание
Server Side Request Forgery (SSRF) exists in the Print My Blog plugin before 1.6.7 for WordPress via the site parameter.
Server Side Request Forgery (SSRF) exists in the Print My Blog plugin before 1.6.7 for WordPress via the site parameter.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2019-11565
- https://github.com/mnelson4/printmyblog/commit/8584a2839a541eb29fca64252e388c827af3ec21
- https://plugins.trac.wordpress.org/changeset?old_path=%2Fprint-my-blog%2Ftrunk&old=2075667&new_path=%2Fprint-my-blog%2Ftrunk&new=2075667
- https://wordpress.org/plugins/print-my-blog/#developers
- https://wpvulndb.com/vulnerabilities/9263
- http://dumpco.re/bugs/wp-plugin-print-my-blog-ssrf
Связанные уязвимости
CVSS3: 9.8
nvd
почти 7 лет назад
Server Side Request Forgery (SSRF) exists in the Print My Blog plugin before 1.6.7 for WordPress via the site parameter.