Security Advisory

CVE-2020-28977

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-11-30 13:19:08

Last updated 2024-08-04 16:48:00

Assigner mitre

State PUBLISHED

Description

The Canto plugin 1.3.0 for WordPress contains blind SSRF vulnerability. It allows an unauthenticated attacker can make a request to any internal and external server via /includes/lib/get.php?subdomain=SSRF.

← Browse all CVEs View on cve.org ↗