๐ CVE-2022-3708 | Web Stories Plugin up to 1.24.0 on WordPress REST API Endpoint /v1/hotlink/proxy url server-side request forgery
๐ก Newskategorie: Sicherheitslรผcken
๐ Quelle: vuldb.com
A vulnerability was found in Web Stories Plugin up to 1.24.0. It has been classified as critical. This affects an unknown part of the file /v1/hotlink/proxy of the component REST API Endpoint Handler. The manipulation of the argument url leads to server-side request forgery. This vulnerability is uniquely identified as CVE-2022-3708. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to apply a patch to fix this issue. ...