Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2023-5798

The Assistant WordPress plugin before 1.4.4 does not validate a parameter before making a request to it via wp_remote_get(), which could allow users with a role as low as Editor to perform SSRF attacks
Exploit prediction scoring system (EPSS) score
EPSS Score 0.007
EPSS Ranking 48.6%
CVSS Severity
CVSS v3 Score 8.8
Products affected by CVE-2023-5798


Contact Us

Shodan ® - All rights reserved