[WordPress Admin CSS MU Plugin](versions 2.6 and older) Vulnerability to Server-Side Request Forgery (SSRF)
Importance (CVSS3.0)
★★★★★★★★☆☆ 8.2 / 10 - High
Details
A Server-Side Request Forgery (SSRF) vulnerability was discovered in the WordPress Admin CSS MU Plugin.
This vulnerability may allow malicious attackers to execute website requests to their arbitrary domain.
This vulnerability has been fixed in version 2.7.
Solutions
Update WordPress Admin CSS MU Plugin to the latest version (at least 2.7 and newer).
Source
We provide information about critical vulnerabilities of WordPress for people who are using or are considering using Wordpress for their projects.
“[WordPress Admin CSS MU Plugin](versions 2.6 and older) Vulnerability to Server-Side Request Forgery (SSRF) ”, by WS Security is licensed under CC BY 4.0.
Komentarai