WordPress Plugin Craw Data Server-Side Request Forgery - CVE-2022-2912 - Vulnerability Database

WordPress Plugin Craw Data Server-Side Request Forgery - CVE-2022-2912

Medium

Reference: CVE-2022-2912

NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2022-2912

Title: WordPress Plugin Craw Data Server-Side Request Forgery

Overview:

WordPress Plugin Craw Data is prone to a server-side request forgery vulnerability. An attacker may leverage this issue to make the vulnerable server perform port scanning of hosts in internal or external networks other attacks are also possible. WordPress Plugin Craw Data version 1.0.0 is vulnerable.