Vulnerabilities > CVE-2023-43982 - Server-Side Request Forgery (SSRF) vulnerability in Bontheme Socialfeed - Photos & Video Using Instagram API 5.2.1/5.2.3/6.0.0
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
HIGH Integrity impact
HIGH Availability impact
HIGH Summary
Bon Presta boninstagramcarousel between v5.2.1 to v7.0.0 was discovered to contain a Server-Side Request Forgery (SSRF) via the url parameter at insta_parser.php. This vulnerability allows attackers to use the vulnerable website as proxy to attack other websites or exfiltrate data via a HTTP call.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 3 |