WordPress Plugin Vulnerabilities

Nelio Ab Testing < 4.5.11 - SSRF

Description

The Nelio AB Testing WordPress plugin was affected by a SSRF security vulnerability.

Affects Plugins

Plugin icon
nelio-ab-testing
Fixed in 4.5.11

References

CVE
CVE-2016-10927

Classification

Type
SSRF
OWASP top 10
A1: Injection
CWE
CWE-918
CVSS
10.0 (critical)

Miscellaneous

Verified
No
WPVDB ID
d8a9d197-93ff-4b00-8b68-66073f6195ef

Timeline

Publicly Published
2016-12-29 (about 9 years ago)
Added
2019-08-24 (about 6 years ago)
Last Updated
2020-09-22 (about 5 years ago)

Other

Published
Title
Published
2024-06-20
Title
BlossomThemes Email Newsletter < 2.2.7 - Authenticated (Admin+) Server-Side Request Forgery
Published
2025-04-09
Title
PowerPress Podcasting < 11.12.7 - Contributor+ SSRF
Published
2025-12-24
Title
Link Library < 7.8.8 - Authenticated (Contributor+) Server-Side Request Forgery
Published
2024-04-09
Title
Kadence Blocks < 3.2.12 - Contributor+ Server-Side Request Forgery
Published
2023-05-02
Title
WP Fatest Cache < 1.1.5 - Blind SSRF via CSRF