Description

A Blind SSRF vulnerability exists in the "Crawl Meta Data" functionality of SEO Panel version 4.10.0. This makes it possible for remote attackers to scan ports in the local environment.

Remediation

References

CVE-2024-22648

Related Vulnerabilities

PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2014-9427)

Oracle JRE CVE-2020-2773 Vulnerability (CVE-2020-2773)

WordPress Plugin Jigoshop Unspecified Vulnerability (1.10.5)

WordPress Plugin Registration Forms-User Registration Forms, Invitation-Based Registrations, Front-end User Profile, Login Form & Content Restriction Multiple Vulnerabilities (2.0.15)

WordPress Plugin WP Armour-Honeypot Anti Spam Cross-Site Scripting (1.5.6)

Severity

Medium

Classification

CVE-2024-22648 CWE-918 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Tags

Missing Update Known Vulnerabilities