Vulnerabilities > CVE-2021-24150 - Server-Side Request Forgery (SSRF) vulnerability in Likebtn-Like-Button Project Likebtn-Like-Button

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
HIGH
Integrity impact
NONE
Availability impact
NONE
network
low complexity
likebtn-like-button-project
CWE-918

Summary

The LikeBtn WordPress Like Button Rating ? LikeBtn WordPress plugin before 2.6.32 was vulnerable to Unauthenticated Full-Read Server-Side Request Forgery (SSRF).

Vulnerable Configurations

Part Description Count
Application
Likebtn-Like-Button_Project
1

Common Weakness Enumeration (CWE)