WordPress Plugin Vulnerabilities

RSVPMaker < 8.7.3 - Authenticated (admin+) SSRF

Description

The Import feature of the plugin (/wp-admin/tools.php?page=rsvpmaker_export_screen) takes an URL input and calls curl on it, without first validating it to ensure it's a remote one. As a result, a high privilege user could use that feature to scan the internal network via a SSRF attack.

Proof of Concept

Affects Plugins

Plugin icon
rsvpmaker
Fixed in 8.7.3

References

CVE
CVE-2021-24371
URL
https://codevigilant.com/disclosure/2021/wp-plugin-rsvpmaker/

Classification

Type
SSRF
OWASP top 10
A1: Injection
CWE
CWE-918
CVSS
4.1 (medium)

Miscellaneous

Original Researcher
Shreya Pohekar of Codevigilant Project
Verified
Yes
WPVDB ID
63be225c-ebee-4cac-b43e-cf033ee7425d

Timeline

Publicly Published
2021-06-29 (about 4 years ago)
Added
2021-06-29 (about 4 years ago)
Last Updated
2022-01-17 (about 3 years ago)

Other

Published
Title
Published
2024-12-18
Title
Broken Link Checker | Finder < 2.5.1 - Authenticated (Author+) Blind Server-Side Request Forgery
Published
2025-09-09
Title
Auto Save Remote Images (Drafts) <= 1.0.9 - Authenticated (Contributor+) Server-Side Request Forgery
Published
2025-09-30
Title
Block For Mailchimp – Easy Mailchimp Form Integration < 1.1.13 - Unauthenticated Blind Server-Side Request Forgery
Published
2024-04-12
Title
Wappointment < 2.6.1 - Admin+ SSRF
Published
2025-08-20
Title
rajce <= 0.4.2 - Authenticated (Contributor+) Server-Side Request Forgery