Vulnerabilities > Surniaulula
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-01-15 | CVE-2023-6991 | Server-Side Request Forgery (SSRF) vulnerability in Surniaulula JSM File GET Contents() Shortcode 2.7.0 The JSM file_get_contents() Shortcode WordPress plugin before 2.7.1 does not validate one of its shortcode's parameters before making a request to it, which could allow users with contributor role and above to perform SSRF attacks. | 8.8 |