Doublesharp

doublesharp

1 CVE • 1 product

Products (1)

Click to collapse

Toggle

Remote Content Shortcode

remote_content_shortcode

1 CVE

CVEs (1)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2024-2090 1Doublesharp 1Remote Content Shortcode Nov 21, 2024 Aug 1, 2024 N/A· v4 6.4 MEDIUM· v3 N/A· v2 The Remote Content Shortcode plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 1.5 via the remote_content shortcode. This makes it possible for authenticated attacker...Show more The Remote Content Shortcode plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 1.5 via the remote_content shortcode. This makes it possible for authenticated attackers, with contributor-level access and above, to make web requests to arbitrary locations originating from the web application and can be used to query and modify information from internal services.Show less

CVE

VENDORS

PRODUCTS

UPDATED

PUBLISHED

CVSS

CVE-2024-2090

1Doublesharp

1Remote Content Shortcode

Nov 21, 2024

Aug 1, 2024

N/A· v4

6.4 MEDIUM· v3

N/A· v2

The Remote Content Shortcode plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 1.5 via the remote_content shortcode. This makes it possible for authenticated attackers, with contributor-level access and above, to make web requests to arbitrary locations originating from the web application and can be used to query and modify information from internal services.Show less