The Canto plugin 1.3.0 for WordPress allows includes/lib/download.php?subdomain= SSRF.
References
Link | Resource |
---|---|
https://gist.github.com/Hakooraevil/264cb21034f946eee62371e9111c36bb | Third Party Advisory |
https://github.com/CantoDAM/Canto-Wordpress-Plugin | Third Party Advisory |
https://wordpress.org/plugins/canto/#developers | Third Party Advisory |
https://www.canto.com/integrations/wordpress/ | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2020-11-10T20:05:08
Updated: 2020-11-10T20:05:08
Reserved: 2020-08-13T00:00:00
Link: CVE-2020-24063
JSON object: View
NVD Information
Status : Analyzed
Published: 2020-11-10T21:15:13.110
Modified: 2020-12-01T18:55:42.763
Link: CVE-2020-24063
JSON object: View
Redhat Information
No data.
CWE