CVE-2022-0591

CRITICAL EXPLOITED NUCLEI

FormCraft WP <3.8.28 - Server-Side Request Forgery via URL Parameter

Title source: manual
STIX 2.1

Exploitation Summary

CVE-2022-0591 has been observed exploited in the wild (reported by VulnCheck KEV). EIP tracks 2 public exploits from researchers including tomorroisnew, im-hanzou. A Nuclei detection template is also available.

AI-analyzed exploit summary This repository contains a scanner for CVE-2022-0591, an unauthenticated SSRF vulnerability in Formcraft3 < 3.8.28. It includes scripts to check multiple targets for vulnerability using GNU Parallel and a single-target exploit script.

Description

The FormCraft WordPress plugin before 3.8.28 does not validate the URL parameter in the formcraft3_get AJAX action, leading to SSRF issues exploitable by unauthenticated users

Exploits (2)

nomisec SCANNER 1 stars
by im-hanzou · infoleak
https://github.com/im-hanzou/FC3er

This repository contains a scanner for CVE-2022-0591, an unauthenticated SSRF vulnerability in Formcraft3 < 3.8.28. It includes scripts to check multiple targets for vulnerability using GNU Parallel and a single-target exploit script.

Classification
Scanner 90%
Attack Type
Ssrf
Complexity
Trivial
Reliability
Reliable
Target: Formcraft3 < 3.8.28
No auth needed
Prerequisites: GNU Parallel for mass scanning · curl · target URLs
devstral-2 · analyzed Feb 16, 2026 Full analysis →

Nuclei Templates (1)

Formcraft3 <3.8.28 - Server-Side Request Forgery
CRITICALVERIFIEDby Akincibor,j4vaovo
FOFA: body="formcraft3" && body="wp-"

References (1)

Core 1
Core References
Exploit, Third Party Advisory x_refsource_misc
https://wpscan.com/vulnerability/b5303e63-d640-4178-9237-d0f524b13d47

Scores

CVSS v3 9.1
EPSS 0.2077
EPSS Percentile 97.2%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

Details

VulnCheck KEV 2023-11-14
CWE
CWE-918
Status published
Products (1)
subtlewebinc/formcraft3 < 3.8.28
Published Mar 21, 2022
Tracked Since Feb 18, 2026