Vulnerability in Wordpress
CVE-2022-3590
WordPress is affected by an unauthenticated blind SSRF in the pingback feature. Because of a TOCTOU race condition between the validation checks and the HTTP request, attackers can reach internal hosts that are explicitly forbidden.
EPSS: 0.903 (99.6th percentile) — read the EPSS interpretation.
Affected products
- Wordpress — versions 4.1.30
Public proof-of-concept exploits
- hxlxmj/CVE-2022-3590-WordPress-Vulnerability-Scanner
- TJouleL/WordPress-6.9.1-Blind-SSRF
- huynhvanphuc/CVE-2022-3590-WordPress-Vulnerability-Scanner
- AlienTec1908/Anaximandre_
- NeoOniX/5ATTACK
- ARPSyndicate/cve-scores
- nomi-sec/PoC-in-GitHub
- 20142995/nuclei-templates
- hxlxmjxbbxs/CVE-2022-3590-WordPress-Vulnerability-Scanner
References
- wpscan.com/vulnerability/c8814e6e-78b3-4f63-a1d3-6906a84c1f11 (exploit, vdb-entry, technical-description)
- blog.sonarsource.com/wordpress-core-unauthenticated-blind-ssrf/
Frequently asked questions
- What is CVE-2022-3590?
- CVE-2022-3590 is a vulnerability in Wordpress, classified under CWE-918 SERVER-SIDE REQUEST FORGERY (SSRF). Published 2022-12-14.
- Is CVE-2022-3590 known to be exploited?
- 9 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.