CVE-2020-28976

Canto <= 1.9.0 - Blind Server-Side Request Forgery via detail.php

highServer-Side Request Forgery (SSRF)

8.3

CVSS Score

8.3

CVSS Score

high

Severity

2.0.1

Patched in

1145d

Time to patch

Description

The Canto plugin 1.9.0 for WordPress contains a blind SSRF vulnerability. It allows an unauthenticated attacker can make a request to any internal and external server via /includes/lib/detail.php?subdomain=SSRF.

CVSS Vector Breakdown

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Changed

Low

Confidentiality

Low

Integrity

Low

Availability

Technical Details

Affected versions<=1.9.0

PublishedDecember 4, 2020

Last updatedJanuary 22, 2024

Affected plugincanto

References

https://www.wordfence.com/threat-intel/vulnerabilities/id/5781420d-b1e0-435f-8bf2-193cc7b095ed?source=api-prod

Check if your site is affected.

Run a free security audit to detect vulnerable plugins, outdated versions, and misconfigurations.

Run free audit Browse CVE database