CVE-2022-3590

MEDIUM EXPLOITED IN THE WILD NUCLEI

WordPress - Blind SSRF

Title source: llm

Description

WordPress is affected by an unauthenticated blind SSRF in the pingback feature. Because of a TOCTOU race condition between the validation checks and the HTTP request, attackers can reach internal hosts that are explicitly forbidden.

Exploits (4)

nomisec SCANNER 8 stars

by hxlxmj · infoleak

https://github.com/hxlxmj/CVE-2022-3590-WordPress-Vulnerability-Scanner

View Code ZIP pw:eip

nomisec

by TJouleL · infoleak

https://github.com/TJouleL/WordPress-6.9.1-Blind-SSRF

View on nomisec

nomisec SCANNER

by huynhvanphuc · infoleak

https://github.com/huynhvanphuc/CVE-2022-3590-WordPress-Vulnerability-Scanner

View Code ZIP pw:eip

inthewild SCANNER

poc

https://github.com/hxlxmjxbbxs/cve-2022-3590-wordpress-vulnerability-scanner

View Code ZIP pw:eip

Nuclei Templates (1)

WordPress <= 6.2 - Server Side Request Forgery

MEDIUMVERIFIEDby riteshs4hu

Shodan: cpe:"cpe:2.3:a:wordpress:wordpress" || http.component:"wordpress"

FOFA: body="oembed" && body="wp-"

References (2)

[Exploit, Third Party Advisory] https://blog.sonarsource.com/wordpress-core-unauthenticated-blind-ssrf/

[Third Party Advisory] https://wpscan.com/vulnerability/c8814e6e-78b3-4f63-a1d3-6906a84c1f11

Scores

CVSS v3 5.9

EPSS 0.9115

EPSS Percentile 99.7%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

Details

VulnCheck KEV 2024-09-18

InTheWild.io 2024-09-18

CWE

CWE-367

Status published

Products (2)

wordpress/wordpress 4.1

wordpress/wordpress 4.2 - 6.1.1

Published Dec 14, 2022

Tracked Since Feb 18, 2026