CVSS base score
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N
What the vulnerability does
The Webmention plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 5.6.2 via the 'Tools::read' function. This makes it possible for authenticated attackers, with Subscriber-level access and above, to make web requests to arbitrary locations originating from the web application and can be used to query and modify information from internal services.
Explanation of Vulnerability in Simple Terms
Webmention versions up to 5.6.2 contain a server-side request forgery vulnerability. An authenticated user can make the site send HTTP requests to internal or external systems on the attacker's behalf. This could expose internal services, bypass network restrictions, or interact with external APIs without authorization. Update to version 5.8.1 or later.
What an attacker can do
Make the site send HTTP requests to internal or external systems the attacker specifies.
Potential impact on your site
Authenticated attackers can probe internal infrastructure, access restricted services, or trigger unwanted external requests from your site.
Conditions required to exploit
Attacker must have a user account with at least low-level privileges on the site.
Key dates
External resources
Related vulnerabilities
