CVE-2024-32819 MEDIUM

CVE-2024-32819: WordPress Culqi plugin <= 3.0.14 - Server Side Request Forgery (SSRF) vulnerability

Vendor Culqi
Product Culqi
Weakness CWE-918 · SSRF
Published April 24, 2024
Last update April 28, 2026
View on NVD All CVEs

CVSS base score

4.9/10
Attack vector Network
Attack complexity High
Privileges required Low
User interaction None
Confidentiality Low
Integrity Low

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:N

What the vulnerability does

01Description

Server-Side Request Forgery (SSRF) vulnerability in Culqi.This issue affects Culqi: from n/a through 3.0.14.

Key dates

02Disclosure timeline

April 24, 2024 CVE published
April 28, 2026 Record updated

Related vulnerabilities

04Related CVE

CVE-2023-27896 Server Side Request Forgery (SSRF) in the SAP BusinessObjects Business Intelligence platform CVE-2024-4561 WhatsUp Gold Server-Side Request Forgery Information Disclosure Vulnerability via FaviconController CVE-2025-59344 AliasVault Vulnerable to Server-Side Request Forgery via Favicon Extraction CVE-2023-40148 PingFederate Server Side Request Forgery vulnerability CVE-2026-34443 FreeScout: SSRF protection bypass via broken CIDR check in checkIpByMask()