[WordPress WooVirtualWallet - A virtual wallet for WooCommerce Plugin](versions 4.6.6 and older) Vulnerability to Server-Side Request Forgery (SSRF)
Importance (CVSS3.0)
★★★★★★★★☆☆ 8.2 / 10 - High
Details
A Server-Side Request Forgery (SSRF) vulnerability was discovered in WordPress WooVirtualWallet - A virtual wallet for WooCommerce Plugin.
This vulnerability may allow malicious attackers to execute a website request to their arbitrary domain.
This vulnerability hasn’t been fixed yet.
Solutions
Deactivate and delete.
This plugin has been terminated..
Source
We provide information about critical vulnerabilities of WordPress for people who are using or are considering using Wordpress for their projects.
“[WordPress AMO for WP - Membership Management Plugin](versions 4.6.6 and older) Vulnerability to Server-Side Request Forgery (SSRF)”, by WS Security is licensed under CC BY 4.0.
Comments