CVE-2022-1398 - Vulnerability Details

Vendors	Products
External Media Without Import Project	External Media Without Import

Link	Providers
https://wpscan.com/vulnerability/5440d177-e995-403e-b2c9-42ceda14579e

Show plain JSON

{"containers": {"cna": {"affected": [{"product": "External Media without Import", "vendor": "Unknown", "versions": [{"lessThanOrEqual": "1.1.2", "status": "affected", "version": "1.1.2", "versionType": "custom"}]}], "credits": [{"lang": "en", "value": "Luan Pedersini"}], "descriptions": [{"lang": "en", "value": "The External Media without Import WordPress plugin through 1.1.2 does not have any authorisation and does to ensure that medias added via URLs are external medias, which could allow any authenticated users, such as subscriber to perform blind SSRF attacks"}], "problemTypes": [{"descriptions": [{"cweId": "CWE-918", "description": "CWE-918 Server-Side Request Forgery (SSRF)", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"dateUpdated": "2022-05-16T14:30:53", "orgId": "1bfdd5d7-9bf6-4a53-96ea-42e2716d7a81", "shortName": "WPScan"}, "references": [{"tags": ["x_refsource_MISC"], "url": "https://wpscan.com/vulnerability/5440d177-e995-403e-b2c9-42ceda14579e"}], "source": {"discovery": "EXTERNAL"}, "title": "External Media without Import <= 1.1.2 - Subscriber+ Blind SSRF", "x_generator": "WPScan CVE Generator", "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "contact@wpscan.com", "ID": "CVE-2022-1398", "STATE": "PUBLIC", "TITLE": "External Media without Import <= 1.1.2 - Subscriber+ Blind SSRF"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "External Media without Import", "version": {"version_data": [{"version_affected": "<=", "version_name": "1.1.2", "version_value": "1.1.2"}]}}]}, "vendor_name": "Unknown"}]}}, "credit": [{"lang": "eng", "value": "Luan Pedersini"}], "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "The External Media without Import WordPress plugin through 1.1.2 does not have any authorisation and does to ensure that medias added via URLs are external medias, which could allow any authenticated users, such as subscriber to perform blind SSRF attacks"}]}, "generator": "WPScan CVE Generator", "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "CWE-918 Server-Side Request Forgery (SSRF)"}]}]}, "references": {"reference_data": [{"name": "https://wpscan.com/vulnerability/5440d177-e995-403e-b2c9-42ceda14579e", "refsource": "MISC", "url": "https://wpscan.com/vulnerability/5440d177-e995-403e-b2c9-42ceda14579e"}]}, "source": {"discovery": "EXTERNAL"}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-03T00:03:06.251Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://wpscan.com/vulnerability/5440d177-e995-403e-b2c9-42ceda14579e"}]}]}, "cveMetadata": {"assignerOrgId": "1bfdd5d7-9bf6-4a53-96ea-42e2716d7a81", "assignerShortName": "WPScan", "cveId": "CVE-2022-1398", "datePublished": "2022-05-16T14:30:53", "dateReserved": "2022-04-19T00:00:00", "dateUpdated": "2024-08-03T00:03:06.251Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{

containers : { »

cna : { »

affected : [ »

0 : { »

product : External Media without Import (string)

vendor : Unknown (string)

versions : [ »

0 : { »

lessThanOrEqual : 1.1.2 (string)

status : affected (string)

version : 1.1.2 (string)

versionType : custom (string)

}

]

}

]

credits : [ »

0 : { »

lang : en (string)

value : Luan Pedersini (string)

}

]

descriptions : [ »

0 : { »

lang : en (string)

value : The External Media without Import WordPress plugin through 1.1.2 does not have any authorisation and does to ensure that medias added via URLs are external medias, which could allow any authenticated users, such as subscriber to perform blind SSRF attacks (string)

}

]

problemTypes : [ »

0 : { »

descriptions : [ »

0 : { »

cweId : CWE-918 (string)

description : CWE-918 Server-Side Request Forgery (SSRF) (string)

lang : en (string)

type : CWE (string)

}

]

}

]

providerMetadata : { »

dateUpdated : 2022-05-16T14:30:53 (string)

orgId : 1bfdd5d7-9bf6-4a53-96ea-42e2716d7a81 (string)

shortName : WPScan (string)

}

references : [ »

0 : { »

tags : [ »

0 : x_refsource_MISC (string)

]

url : https://wpscan.com/vulnerability/5440d177-e995-403e-b2c9-42ceda14579e (string)

}

]

source : { »

discovery : EXTERNAL (string)

}

title : External Media without Import <= 1.1.2 - Subscriber+ Blind SSRF (string)

x_generator : WPScan CVE Generator (string)

x_legacyV4Record : { »

CVE_data_meta : { »

ASSIGNER : contact@wpscan.com (string)

ID : CVE-2022-1398 (string)

STATE : PUBLIC (string)

TITLE : External Media without Import <= 1.1.2 - Subscriber+ Blind SSRF (string)

}

affects : { »

vendor : { »

vendor_data : [ »

0 : { »

product : { »

product_data : [ »

0 : { »

product_name : External Media without Import (string)

version : { »

version_data : [ »

0 : { »

version_affected : <= (string)

version_name : 1.1.2 (string)

version_value : 1.1.2 (string)

}

]

}

]

}

vendor_name : Unknown (string)

}

]

}

credit : [ »

0 : { »

lang : eng (string)

value : Luan Pedersini (string)

}

]

data_format : MITRE (string)

data_type : CVE (string)

data_version : 4.0 (string)

description : { »

description_data : [ »

0 : { »

lang : eng (string)

value : The External Media without Import WordPress plugin through 1.1.2 does not have any authorisation and does to ensure that medias added via URLs are external medias, which could allow any authenticated users, such as subscriber to perform blind SSRF attacks (string)

}

]

}

generator : WPScan CVE Generator (string)

problemtype : { »

problemtype_data : [ »

0 : { »

description : [ »

0 : { »

lang : eng (string)

value : CWE-918 Server-Side Request Forgery (SSRF) (string)

}

]

}

]

}

references : { »

reference_data : [ »

0 : { »

name : https://wpscan.com/vulnerability/5440d177-e995-403e-b2c9-42ceda14579e (string)

refsource : MISC (string)

url : https://wpscan.com/vulnerability/5440d177-e995-403e-b2c9-42ceda14579e (string)

}

]

}

source : { »

discovery : EXTERNAL (string)

}

adp : [ »

0 : { »

providerMetadata : { »

orgId : af854a3a-2127-422b-91ae-364da2661108 (string)

shortName : CVE (string)

dateUpdated : 2024-08-03T00:03:06.251Z (string)

}

title : CVE Program Container (string)

references : [ »

0 : { »

tags : [ »

0 : x_refsource_MISC (string)

1 : x_transferred (string)

]

url : https://wpscan.com/vulnerability/5440d177-e995-403e-b2c9-42ceda14579e (string)

}

]

}

]

}

cveMetadata : { »

assignerOrgId : 1bfdd5d7-9bf6-4a53-96ea-42e2716d7a81 (string)

assignerShortName : WPScan (string)

cveId : CVE-2022-1398 (string)

datePublished : 2022-05-16T14:30:53 (string)

dateReserved : 2022-04-19T00:00:00 (string)

dateUpdated : 2024-08-03T00:03:06.251Z (string)

state : PUBLISHED (string)

}

dataType : CVE_RECORD (string)

dataVersion : 5.1 (string)

}

Show plain JSON

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:external_media_without_import_project:external_media_without_import:*:*:*:*:*:wordpress:*:*", "matchCriteriaId": "CC35380F-2D8A-4682-A0C0-A9AC3C5D98B2", "versionEndIncluding": "1.1.2", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "The External Media without Import WordPress plugin through 1.1.2 does not have any authorisation and does to ensure that medias added via URLs are external medias, which could allow any authenticated users, such as subscriber to perform blind SSRF attacks"}, {"lang": "es", "value": "El plugin External Media without Import de WordPress versiones hasta 1.1.2, no presenta ninguna autorizaci\u00f3n y no asegura que los medios a\u00f1adidos por medio de URLs sean medios externos, lo que podr\u00eda permitir a cualquier usuario autenticado, como el suscriptor, llevar a cabo ataques de tipo SSRF ciegos"}], "id": "CVE-2022-1398", "lastModified": "2024-11-21T06:40:39.057", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "NONE", "baseScore": 4.0, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:S/C:P/I:N/A:N", "version": "2.0"}, "exploitabilityScore": 8.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 6.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2022-05-16T15:15:09.413", "references": [{"source": "contact@wpscan.com", "tags": ["Exploit", "Third Party Advisory"], "url": "https://wpscan.com/vulnerability/5440d177-e995-403e-b2c9-42ceda14579e"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Exploit", "Third Party Advisory"], "url": "https://wpscan.com/vulnerability/5440d177-e995-403e-b2c9-42ceda14579e"}], "sourceIdentifier": "contact@wpscan.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-918"}], "source": "contact@wpscan.com", "type": "Secondary"}]}

{

configurations : [ »

0 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:a:external_media_without_import_project:external_media_without_import:*:*:*:*:*:wordpress:*:* (string)

matchCriteriaId : CC35380F-2D8A-4682-A0C0-A9AC3C5D98B2 (string)

versionEndIncluding : 1.1.2 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

}

]

descriptions : [ »

0 : { »

lang : en (string)

value : The External Media without Import WordPress plugin through 1.1.2 does not have any authorisation and does to ensure that medias added via URLs are external medias, which could allow any authenticated users, such as subscriber to perform blind SSRF attacks (string)

}

1 : { »

lang : es (string)

value : El plugin External Media without Import de WordPress versiones hasta 1.1.2, no presenta ninguna autorización y no asegura que los medios añadidos por medio de URLs sean medios externos, lo que podría permitir a cualquier usuario autenticado, como el suscriptor, llevar a cabo ataques de tipo SSRF ciegos (string)

}

]

id : CVE-2022-1398 (string)

lastModified : 2024-11-21T06:40:39.057 (string)

metrics : { »

cvssMetricV2 : [ »

0 : { »

acInsufInfo : false (boolean)

baseSeverity : MEDIUM (string)

cvssData : { »

accessComplexity : LOW (string)

accessVector : NETWORK (string)

authentication : SINGLE (string)

availabilityImpact : NONE (string)

baseScore : 4 (number)

confidentialityImpact : PARTIAL (string)

integrityImpact : NONE (string)

vectorString : AV:N/AC:L/Au:S/C:P/I:N/A:N (string)

version : 2.0 (string)

}

exploitabilityScore : 8 (number)

impactScore : 2.9 (number)

obtainAllPrivilege : false (boolean)

obtainOtherPrivilege : false (boolean)

obtainUserPrivilege : false (boolean)

source : nvd@nist.gov (string)

type : Primary (string)

userInteractionRequired : false (boolean)

}

]

cvssMetricV31 : [ »

0 : { »

cvssData : { »

attackComplexity : LOW (string)

attackVector : NETWORK (string)

availabilityImpact : NONE (string)

baseScore : 6.5 (number)

baseSeverity : MEDIUM (string)

confidentialityImpact : HIGH (string)

integrityImpact : NONE (string)

privilegesRequired : LOW (string)

scope : UNCHANGED (string)

userInteraction : NONE (string)

vectorString : CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N (string)

version : 3.1 (string)

}

exploitabilityScore : 2.8 (number)

impactScore : 3.6 (number)

source : nvd@nist.gov (string)

type : Primary (string)

}

]

}

published : 2022-05-16T15:15:09.413 (string)

references : [ »

0 : { »

source : contact@wpscan.com (string)

tags : [ »

0 : Exploit (string)

1 : Third Party Advisory (string)

]

url : https://wpscan.com/vulnerability/5440d177-e995-403e-b2c9-42ceda14579e (string)

}

1 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Exploit (string)

1 : Third Party Advisory (string)

]

url : https://wpscan.com/vulnerability/5440d177-e995-403e-b2c9-42ceda14579e (string)

}

]

sourceIdentifier : contact@wpscan.com (string)

vulnStatus : Modified (string)

weaknesses : [ »

0 : { »

description : [ »

0 : { »

lang : en (string)

value : CWE-918 (string)

}

]

source : contact@wpscan.com (string)

type : Secondary (string)

}

]

}

Metrics

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact None

Availability Impact None

User Interaction None

Access Vector Network

Access Complexity Low

Authentication Single

Confidentiality Impact Partial

Integrity Impact None

Availability Impact None

Affected Vendors & Products

Metrics

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact None

Availability Impact None

User Interaction None

Access Vector Network

Access Complexity Low

Authentication Single

Confidentiality Impact Partial

Integrity Impact None

Availability Impact None

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object