CVE-2024-38728

Опубликовано: 22 июл. 2024

Источник: nvd

CVSS3: 7.2

CVSS3: 6.4

EPSS Низкий

Описание

Server-Side Request Forgery (SSRF) vulnerability in Seraphinite Solutions Seraphinite Post .DOCX Source.This issue affects Seraphinite Post .DOCX Source: from n/a through 2.16.9.

Ссылки

https://patchstack.com/database/vulnerability/seraphinite-post-docx-source/wordpress-seraphinite-post-docx-source-plugin-2-16-9-server-side-request-forgery-ssrf-vulnerability?_s_id=cve
Third Party Advisory
https://patchstack.com/database/vulnerability/seraphinite-post-docx-source/wordpress-seraphinite-post-docx-source-plugin-2-16-9-server-side-request-forgery-ssrf-vulnerability?_s_id=cve
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:s-sols:seraphinite_post_.docx_source:*:*:*:*:*:wordpress:*:*

Версия до 2.16.10 (исключая)

EPSS

Процентиль: 50%

0.00274

Низкий

7.2 High

CVSS3

6.4 Medium

CVSS3

Дефекты

CWE-918

Связанные уязвимости

GHSA-2hxf-jmpm-jxjc

CVSS3: 7.2

github

больше 1 года назад

Server-Side Request Forgery (SSRF) vulnerability in Seraphinite Solutions Seraphinite Post .DOCX Source.This issue affects Seraphinite Post .DOCX Source: from n/a through 2.16.9.

EPSS

Процентиль: 50%

0.00274

Низкий

7.2 High

CVSS3

6.4 Medium

CVSS3

Дефекты

CWE-918