ThreatPress

WordPress Vulnerabilities Database

Back

WordPress <= 3.5.1 - Multiple SSRF

Product
WordPress
Description
Because of these vulnerabilities, the attackers can send HTTP requests to intranet servers via unspecified vectors.
Solution
Update WordPress.
Classification
Type Server Side Request Forgery (SSRF)
References
CVE Mitre
CVE
Name CVE-2013-2199
Versions
Affected In <= 3.5.1
Fixed In 3.5.2
Disclosure date
2013-02-19
Credits
Jan Lieskovsky