WordPress Plugin Vulnerabilities

Orbit Fox < 2.10.24 - Author+ Server-Side Request Forgery

Description

The plugin does not limit URLs which may be used for the stock photo import feature, allowing the user to specify arbitrary URLs. This leads to a server-side request forgery as the user may force the server to access any URL of their choosing.

Proof of Concept

Affects Plugins

Plugin icon
themeisle-companion
Fixed in 2.10.24

References

CVE
CVE-2023-2287

Classification

Type
SSRF
OWASP top 10
A1: Injection
CWE
CWE-918
CVSS
5.5 (medium)

Miscellaneous

Original Researcher
Alex Sanford
Submitter
Alex Sanford
Submitter website
https://wpscan.com
Verified
Yes
WPVDB ID
1b36a184-2138-4a65-8940-07e7764669bb

Timeline

Publicly Published
2023-05-02 (about 2 years ago)
Added
2023-05-02 (about 2 years ago)
Last Updated
2023-05-02 (about 2 years ago)

Other

Published
Title
Published
2024-04-16
Title
RSS Aggregator by Feedzy – Feed to Post, Autoblogging, News & YouTube Video Feeds Aggregator < 4.4.8 - Authenticated(Contributor+) Blind Server-Side Request Forgery (SSRF)
Published
2024-04-12
Title
Wappointment < 2.6.1 - Admin+ SSRF
Published
2025-10-23
Title
Popup builder with Gamification, Multi-Step Popups, Page-Level Targeting, and WooCommerce Triggers < 2.1.5 - Unauthenticated Server-Side Request Forgery
Published
2025-11-26
Title
AI ChatBot with ChatGPT and Content Generator by AYS < 2.7.1 - Unauthenticated Server-Side Request Forgery via 'pinecone_url' Parameter
Published
2025-12-12
Title
Emplibot – AI Content Writer with Keyword Research, Infographics, and Linking | SEO Optimized | Fully Automated < 1.1.0 - Authenticated (Admin+) Server-Side Request Forgery