Vulnerabilities > CVE-2023-23684 - Server-Side Request Forgery (SSRF) vulnerability in Wpengine Wpgraphql

047910
CVSS 6.5 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
LOW
Confidentiality impact
HIGH
Integrity impact
NONE
Availability impact
NONE
network
low complexity
wpengine
CWE-918
NVD
Published: 2023-11-13
Updated: 2023-12-20

Summary

Server-Side Request Forgery (SSRF) vulnerability in WPGraphQL.This issue affects WPGraphQL: from n/a through 1.14.5.

Vulnerable Configurations

Part Description Count
Application
Wpengine
184

Common Weakness Enumeration (CWE)

References