[WordPress Shortcodes Ultimate Plugin](versions 5.12.6 and older) Vulnerability to Server-Side Request Forgery (SSRF)

Importance (CVSS3.0)

★★★★★★★☆☆☆ 7.1/ 10 - High

Details

A Server-Side Request Forgery (SSRF) vulnerability was discovered in WordPress Shortcodes Ultimate Plugin.

This could allow malicious attackers to execute a website request to their arbitrary domain.

Solutions

Update the WordPress Shortcodes Ultimate Plugin to the newest version (5.12.7 and newer).

Source

CVE-2023-23800

We provide information about critical vulnerabilities of WordPress for people who are using or are considering using Wordpress for their projects.

“[WordPress Shortcodes Ultimate Plugin](versions 5.12.6 and older) Vulnerability to Server-Side Request Forgery (SSRF) ”, by WS Security is licensed under CC BY 4.0.