High severity7.2NVD Advisory· Published Jun 27, 2022· Updated Jun 17, 2026
CVE-2022-1977
CVE-2022-1977
Description
The Import Export All WordPress Images, Users & Post Types WordPress plugin before 6.5.3 does not fully validate the file to be imported via an URL before making an HTTP request to it, which could allow high privilege users such as admin to perform Blind SSRF attacks
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- WordPress/Import Export All WordPress Images, Users & Post Typesdescription
- Range: <6.5.3
Patches
Vulnerability mechanics
References
1- wpscan.com/vulnerability/1b640519-75e1-48cb-944e-b9bff9de6d3dnvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.