{"uuid": "71324b46-e844-42e1-93e0-b48eb73276f4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-2912", "type": "seen", "source": "https://t.me/cibsecurity/49878", "content": "\u203c CVE-2022-2912 \u203c\n\nThe Craw Data WordPress plugin through 1.0.0 does not implement nonce checks, which could allow attackers to make a logged in admin change the url value performing unwanted crawls on third-party sites (SSRF).\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-16T12:42:09.000000Z"}