How severe is CVE-2024-10903?

CVE-2024-10903 has a CVSS v3 score of 4.7 (MEDIUM).

CVE-2024-10903

Name: broken_link_checker
Author: managewp

4.7MEDIUM

The Broken Link Checker WordPress plugin before 2.4.2 does not validate a the link URLs before making a request to them, which could allow admin users to perform SSRF attack, for example on a multisit

Published: 12/26/2024Updated: 5/14/2025

Description

The Broken Link Checker WordPress plugin before 2.4.2 does not validate a the link URLs before making a request to them, which could allow admin users to perform SSRF attack, for example on a multisite installation.

AI AnalysisPowered by AI

Affected Products

managewpbroken_link_checker

References

https://wpscan.com/vulnerability/39027390-ce01-4dd5-a979-426785aa7acb/
ExploitThird Party Advisory
https://wpscan.com/vulnerability/39027390-ce01-4dd5-a979-426785aa7acb/
ExploitThird Party Advisory