Vulnerabilities > Craw Data Project

DATE CVE VULNERABILITY TITLE RISK
2022-09-16 CVE-2022-2912 Server-Side Request Forgery (SSRF) vulnerability in Craw-Data Project Craw-Data
The Craw Data WordPress plugin through 1.0.0 does not implement nonce checks, which could allow attackers to make a logged in admin change the url value performing unwanted crawls on third-party sites (SSRF).
network
low complexity
craw-data-project CWE-918
4.3