CVE-2023-5974

Summary

The WPB Show Core WordPress plugin through 2.2 is vulnerable to server-side request forgery (SSRF) via the path parameter.

Affected Software

VendorProductVersion RangeStatus
Unknownwpb-show-core0 <= 2.2affected

Weaknesses

  • CWE-918 Server-Side Request Forgery (SSRF)

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: poc
    • Automatable: yes
    • Technical Impact: total

References