⚠ Exploited in the wild
Exploitation observed in the wild. Not yet on CISA KEV.

CVE-2022-3590Time-of-check Time-of-use (TOCTOU) Race Condition in Wordpress

CWE-367Time-of-check Time-of-use (TOCTOU) Race ConditionCWE-918Server-Side Request Forgery8 documents8 sources
Severity
5.9MEDIUMNVD
EPSS
91.1%
top 0.35%
CISA KEV
Not in KEV
Exploit
Exploited in wild
Active exploitation observed
Affected products
1
Wordpress
Timeline
PublishedDec 14

Description

WordPress is affected by an unauthenticated blind SSRF in the pingback feature. Because of a TOCTOU race condition between the validation checks and the HTTP request, attackers can reach internal hosts that are explicitly forbidden.

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:NExploitability: 2.2 | Impact: 3.6

Affected Packages2 packages

CVEListV5wordpress/wordpress4.1.306.1.1
NVDwordpress/wordpress4.26.1.1+1

🔴Vulnerability Details

4
GHSA
GHSA-mjj5-7gmf-mfjx: WordPress is affected by an unauthenticated blind SSRF in the pingback feature2022-12-14
CVEList
WP <= 6.1.1 - Unauthenticated Blind SSRF via DNS Rebinding2022-12-14
OSV
CVE-2022-3590: WordPress is affected by an unauthenticated blind SSRF in the pingback feature2022-12-14
VulnCheck
WordPress wordpress Time-of-check Time-of-use (TOCTOU) Race Condition2022

💥Exploits & PoCs

1
Nuclei
WordPress <= 6.2 - Server Side Request Forgery

📋Vendor Advisories

1
Debian
CVE-2022-3590: wordpress - WordPress is affected by an unauthenticated blind SSRF in the pingback feature. ...2022