CVE-2016-10927

CRITICAL

Nelio AB Testing < 4.5.11 - Server-Side Request Forgery via ajax/iesupport.php

Title source: llm
STIX 2.1

Description

The nelio-ab-testing plugin before 4.5.11 for WordPress has SSRF in ajax/iesupport.php.

References (1)

Core 1
Core References

Scores

CVSS v3 10.0
EPSS 0.0165
EPSS Percentile 73.5%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:N

Details

CWE
CWE-918
Status published
Products (1)
neliosoftware/nelio_ab_testing < 4.5.11
Published Aug 22, 2019
Tracked Since Feb 18, 2026