CVE-2021-24150

CVE-2021-24150: Like Button Rating < 2.6.32 - Unauthenticated Full-Read SSRF

Vendor Unknown

Product Like Button Rating ♥ LikeBtn

Weakness CWE-918 · SSRF

Published April 5, 2021

Last update August 3, 2024

View on NVD All CVEs

CVSS base score

—

What the vulnerability does

01Description

The LikeBtn WordPress Like Button Rating ♥ LikeBtn WordPress plugin before 2.6.32 was vulnerable to Unauthenticated Full-Read Server-Side Request Forgery (SSRF).

Key dates

02Disclosure timeline

April 5, 2021 CVE published

August 3, 2024 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2021-24150

Related vulnerabilities

04Related CVE

CVE-2024-0440 SSRF - file:// unsanitized access to underlying host files CVE-2024-13845 Gravity Forms WebHooks <= 1.6.0 - Authenticated (Admin+) Server-Side Request Forgery via Webhook CVE-2026-31989 OpenClaw < 2026.3.1 - Server-Side Request Forgery via web_search Citation Redirect CVE-2024-38645 Notes Station 3 CVE-2017-18036