Vulnerabilities > Carrcommunications > Rsvpmaker > Low

DATE	CVE	VULNERABILITY TITLE	RISK
2021-08-02	CVE-2021-24371	Server-Side Request Forgery (SSRF) vulnerability in Carrcommunications Rsvpmaker The Import feature of the RSVPMaker WordPress plugin before 8.7.3 (/wp-admin/tools.php?page=rsvpmaker_export_screen) takes an URL input and calls curl on it, without first validating it to ensure it's a remote one. network low complexity carrcommunications CWE-918	2.7

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.