The Assistant WordPress plugin... CVE-2023-5798

- AV AC AU C I A
发布: 2023-10-26
修订: 2023-11-07

The Assistant WordPress plugin before 1.4.4 does not validate a parameter before making a request to it via wp_remote_get(), which could allow users with a role as low as Editor to perform SSRF attacks

0%

漏洞利用/PoC

暂无可用Exp或PoC

受影响的平台与产品

当前有1条受影响产品信息