Server-Side Request Forgery (SSRF) vulnerability in Joe Hoyle WPThumb allows Server Side Request Forgery. This issue affects WPThumb: from n/a through 0.10.
History

Mon, 23 Jun 2025 17:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


Fri, 20 Jun 2025 15:15:00 +0000

Type Values Removed Values Added
Description Server-Side Request Forgery (SSRF) vulnerability in Joe Hoyle WPThumb allows Server Side Request Forgery. This issue affects WPThumb: from n/a through 0.10.
Title WordPress WPThumb plugin <= 0.10 - Server Side Request Forgery (SSRF) Vulnerability
Weaknesses CWE-918
References
Metrics cvssV3_1

{'score': 4.9, 'vector': 'CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:N'}


cve-icon MITRE

Status: PUBLISHED

Assigner: Patchstack

Published: 2025-06-20T15:04:11.656Z

Updated: 2025-06-23T16:18:44.237Z

Reserved: 2025-06-11T16:07:48.985Z

Link: CVE-2025-49983

cve-icon Vulnrichment

Updated: 2025-06-23T16:10:03.410Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2025-06-20T15:15:24.143

Modified: 2025-06-23T20:16:40.143

Link: CVE-2025-49983

cve-icon Redhat

No data.