CVE-2019-16932

CRITICAL EXPLOITED NUCLEI

Themeisle Visualizer < 3.3.1 - SSRF

Title source: rule

Description

A blind SSRF vulnerability exists in the Visualizer plugin before 3.3.1 for WordPress via wp-json/visualizer/v1/upload-data.

Nuclei Templates (1)

Visualizer <3.3.1 - Blind Server-Side Request Forgery
CRITICALby akincibor

References (3)

Scores

CVSS v3 10.0
EPSS 0.8084
EPSS Percentile 99.2%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:N

Details

VulnCheck KEV 2023-12-11
CWE
CWE-918
Status published
Products (1)
themeisle/visualizer < 3.3.1
Published Sep 30, 2019
Tracked Since Feb 18, 2026