Server-Side Request Forgery (SSRF) Vulnerability in RapidLoad Power-Up for Autoptimize
CVE-2024-31288
7.2HIGH
Key Information:
- Vendor
WordPress
- Vendor
- CVE Published:
- 7 April 2024
What is CVE-2024-31288?
A Server-Side Request Forgery (SSRF) vulnerability exists within the RapidLoad Power-Up for Autoptimize, allowing attackers to potentially send unauthorized requests from the server. This vulnerability impacts versions from n/a through 2.2.11, posing a significant risk to users by potentially enabling access to sensitive internal systems or data that the vulnerable server could reach.
Affected Version(s)
RapidLoad Power-Up for Autoptimize <= 2.2.11