jetpack gives me a warning

  • Resolved fridakalho

    (@fridakalho)


    1 year, 10 months ago

    WP <= 6.2 – Unauthenticated Blind SSRF via DNS Rebinding

    What is the problem?

    WordPress is affected by an unauthenticated blind SSRF in the pingback feature. Because of a TOCTOU race condition between the validation checks and the HTTP request, attackers can reach internal hosts that are explicitly forbidden

    Do i have to do something?

    The page I need help with: [log in to see the link]

Viewing 2 replies - 1 through 2 (of 2 total)
Viewing 2 replies - 1 through 2 (of 2 total)
  • The topic ‘jetpack gives me a warning’ is closed to new replies.