CVE-2022-3590
5.9
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
Summary
WordPress is affected by an unauthenticated blind SSRF in the pingback feature. Because of a TOCTOU race condition between the validation checks and the HTTP request, attackers can reach internal hosts that are explicitly forbidden.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| WordPress | WordPress | 4.1.30 <= 6.1.1 | affected |
Weaknesses
- CWE-918 Server-Side Request Forgery (SSRF)
- CWE-367 Time-of-check Time-of-use (TOCTOU) Race Condition
ADP Enrichment
CVE Program Container
Additional References
- https://wpscan.com/vulnerability/c8814e6e-78b3-4f63-a1d3-6906a84c1f11
- https://blog.sonarsource.com/wordpress-core-unauthenticated-blind-ssrf/
CISA ADP Vulnrichment
- SSVC:
- Exploitation: poc
- Automatable: no
- Technical Impact: partial
References
- https://wpscan.com/vulnerability/c8814e6e-78b3-4f63-a1d3-6906a84c1f11
- https://blog.sonarsource.com/wordpress-core-unauthenticated-blind-ssrf/
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.