[WordPress Admin CSS MU Plugin](versions 2.6 and older) Vulnerability to Server-Side Request Forgery (SSRF)

Importance (CVSS3.0)

★★★★★★★★☆☆ 8.2 / 10 - High

Details

A Server-Side Request Forgery (SSRF) vulnerability was discovered in the WordPress Admin CSS MU Plugin.

This vulnerability may allow malicious attackers to execute website requests to their arbitrary domain.

This vulnerability has been fixed in version 2.7.

Solutions

Update WordPress Admin CSS MU Plugin to the latest version (at least 2.7 and newer).

Source

CVE-2023-40700

We provide information about critical vulnerabilities of WordPress for people who are using or are considering using Wordpress for their projects.

“[WordPress Admin CSS MU Plugin](versions 2.6 and older) Vulnerability to Server-Side Request Forgery (SSRF) ”, by WS Security is licensed under CC BY 4.0.