Description

A Blind SSRF vulnerability exists in the "Crawl Meta Data" functionality of SEO Panel version 4.10.0. This makes it possible for remote attackers to scan ports in the local environment.

Remediation

References

CVE-2024-22648

Related Vulnerabilities

WordPress Plugin Lazy SEO Arbitrary File Upload (1.3.2)

MySQL CVE-2022-21322 Vulnerability (CVE-2022-21322)

Joomla Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2015-8563)

Squid Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2019-18679)

WordPress Plugin UpdraftPlus WordPress Backup Cross-Site Request Forgery (1.23.3)

Severity

Medium

Classification

CVE-2024-22648 CWE-918 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Tags

Missing Update Known Vulnerabilities