CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2020-24149

Server-side request forgery (SSRF) in the Podcast Importer SecondLine (podcast-importer-secondline) plugin 1.1.4 for WordPress via the podcast_feed parameter in a secondline_import_initialize action to the secondlinepodcastimport page.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.006

EPSS Ranking 68.1%

CVSS Severity

CVSS v3 Score 7.5

CVSS v2 Score 5.0

References

https://github.com/secwx/research/blob/main/cve/CVE-2020-24149.md
https://wordpress.org/plugins/podcast-importer-secondline/#developers
https://github.com/secwx/research/blob/main/cve/CVE-2020-24149.md
https://wordpress.org/plugins/podcast-importer-secondline/#developers

Products affected by CVE-2020-24149

Secondline » Podcast Importer Secondline » Version: 1.1.4

cpe:2.3:a:secondline:podcast_importer_secondline:1.1.4

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-24149

Products

Pricing

Contact Us