CVE-2024-13905
Published: 27 February 2025
Description
The OneStore Sites plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 0.1.1 via the class-export.php file. This makes it possible for unauthenticated attackers to make web requests to arbitrary locations originating from the web application and can be used to query and modify information from internal services.
Security Summary
CVE-2024-13905 is a Server-Side Request Forgery (SSRF) vulnerability, mapped to CWE-918, affecting the OneStore Sites plugin for WordPress in all versions up to and including 0.1.1. The flaw exists in the class-export.php file, enabling attackers to trick the server into making unauthorized requests.
Unauthenticated attackers can exploit this vulnerability remotely with low attack complexity, no required privileges, and no user interaction, as indicated by its CVSS v3.1 base score of 5.3 (AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N). Exploitation allows attackers to originate web requests from the vulnerable application to arbitrary locations, potentially querying or modifying information from internal services.
Mitigation guidance and further details are available in advisories from sources including the Wordfence threat intelligence report at https://www.wordfence.com/threat-intel/vulnerabilities/id/f2c70d5f-beb3-480e-8ea8-c3ab01ce5a20?source=cve and the plugin source code at https://plugins.trac.wordpress.org/browser/onestore-sites/trunk/classess/class-export.php#L3.
Details
- CWE(s)