CVE-2024-9624 | WP All Import Pro Plugin up to 4.9.3 on WordPress File Import server-side request forgery

Posted by Angelo Barbosa | Dec 16, 2024 | CVE

A vulnerability was found in WP All Import Pro Plugin up to 4.9.3 on WordPress and classified as critical. This issue affects some unknown processing of the component File Import. The manipulation leads to server-side request forgery.

The identification of this vulnerability is CVE-2024-9624. The attack may be initiated remotely. There is no exploit available.

CVE-2024-9624 | WP All Import Pro Plugin up to 4.9.3 on WordPress File Import server-side request forgery

Related Posts

CVE-2024-28661 | FFmpeg Remote Code Execution

CVE-2024-7182 | TOTOLINK A3600R 4.1.2cu.5182_B20201102 /cgi-bin/cstecgi.cgi setUpgradeFW FileName buffer overflow

Trend Micro Apex One origin validation (ZDI-23-1617)

CVE-2024-10460 | Mozilla Thunderbird up to 131 iFrame ui layer