CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Fastlinemedia: >> Assistant >> 0.4.2 Security Vulnerabilities

CVE-2023-5798

The Assistant WordPress plugin before 1.4.4 does not validate a parameter before making a request to it via wp_remote_get(), which could allow users with a role as low as Editor to perform SSRF attacks

CVSS Score

8.8

EPSS Score

0.003

Published

2023-10-26

Page 1

Vulnerabilities

Vulnerable Software

Fastlinemedia: >> Assistant >> 0.4.2 Security Vulnerabilities

Products

Pricing

Contact Us