Vulnerability Details CVE-2020-24148
Server-side request forgery (SSRF) in the Import XML and RSS Feeds (import-xml-feed) plugin 2.0.1 for WordPress via the data parameter in a moove_read_xml action.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.891
EPSS Ranking 99.5%
CVSS Severity
CVSS v3 Score 9.1
CVSS v2 Score 6.4
References
Products affected by CVE-2020-24148
-
cpe:2.3:a:mooveagency:import_xml_and_rss_feeds:2.0.1