Vulnerability Details CVE-2022-40842
ndk design NdkAdvancedCustomizationFields 3.5.0 is vulnerable to Server-side request forgery (SSRF) via rotateimg.php.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 49.3%
CVSS Severity
CVSS v3 Score 9.1
References
Products affected by CVE-2022-40842
-
cpe:2.3:a:ndk-design:ndkadvancedcustomizationfields:-
-
cpe:2.3:a:ndk-design:ndkadvancedcustomizationfields:3.5.0