CVE-2022-36376: Server-Side Request Forgery (SSRF)

September 10, 2022 (updated September 16, 2022)

Server-Side Request Forgery (SSRF) vulnerability in Rank Math SEO plugin <= 1.0.95 at WordPress.

References

github.com/advisories/GHSA-j95r-86hx-xwxg
nvd.nist.gov/vuln/detail/CVE-2022-36376
patchstack.com/database/vulnerability/seo-by-rank-math/wordpress-rank-math-seo-plugin-1-0-95-server-side-request-forgery-ssrf-vulnerability
rankmath.com/changelog/

Code Behaviors & Features

Detect and mitigate CVE-2022-36376 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →