Lucene search
PatchstackCVELIST:CVE-2023-41239HistoryNov 13, 2023 - 2:42 a.m.
CVE-2023-41239 WordPress PowerPress Podcasting Plugin <= 11.0.6 is vulnerable to Server Side Request Forgery (SSRF)
2023-11-1302:42:42
CWE-918
Patchstack
www.cve.org
3
cve-2023-41239
server side request forgery
blubrry powerpress podcasting plugin
CVSS3
6.4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N
EPSS
0.001
Percentile
18.1%
Server-Side Request Forgery (SSRF) vulnerability in Blubrry PowerPress Podcasting plugin by Blubrry.This issue affects PowerPress Podcasting plugin by Blubrry: from n/a through 11.0.6.
CNA Affected
[
{
"collectionURL": "https://wordpress.org/plugins",
"defaultStatus": "unaffected",
"packageName": "powerpress",
"product": "PowerPress Podcasting plugin by Blubrry",
"vendor": "Blubrry",
"versions": [
{
"changes": [
{
"at": "11.0.7",
"status": "unaffected"
}
],
"lessThanOrEqual": "11.0.6",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]Related
nvd
nvd
CVE-2023-41239
2023-11-13 03:15:09
cve
cve
CVE-2023-41239
2023-11-13 03:15:09
wpvulndb
wpvulndb
PowerPress Podcasting < 11.0.7 - Contributor+ SSRF
2023-11-13 00:00:00
prion
prion
Server side request forgery (ssrf)
2023-11-13 03:15:00
vulnrichment
vulnrichment
wordfence
wordfence
CVSS3
6.4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N
EPSS
0.001
Percentile
18.1%
Related for CVELIST:CVE-2023-41239