Vulnerabilities for Jrss widget (...) - CXSECURITY.COM

Vulnerabilities for 'Jrss widget'

2014-12-05

CVE-2014-9292

Server-side request forgery (SSRF) vulnerability in proxy.php in the jRSS Widget plugin 1.2 and earlier for WordPress allows remote attackers to trigger outbound requests and enumerate open ports via the url parameter.

Copyright 2024, cxsecurity.com