We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.
Please see our statement on Data Privacy.
The Broken Link Checker WordPress plugin before 2.4.2 does not validate a the link URLs before making a request to them, which could allow admin users to perform SSRF attack, for example on a multisite installation.
Reserved 2024-11-05 | Published 2024-12-26 | Updated 2024-12-30 | Assigner WPScanCWE-918 Server-Side Request Forgery (SSRF)
Carlos Flores
WPScan
wpscan.com/...rability/39027390-ce01-4dd5-a979-426785aa7acb/
Support options