CVE-2014-9292 Information
Feb 14, 2021
cve
Description
Server-side request forgery (SSRF) vulnerability in proxy.php in the jRSS Widget plugin 1.2 and earlier for WordPress allows remote attackers to trigger outbound requests and enumerate open ports via the url parameter.
Reference
http://codevigilant.com/disclosure/wp-plugin-jrss-widget-ssrfxspa/ Server-side request forgery (SSRF) vulnerability in proxy.php in the jRSS Widget plugin 1.2 and earlier for WordPress allows remote attackers to trigger outbound requests and enumerate open ports via the url parameter.
Share on: