Server-Side Request Forgery Vulnerability in QuantumCloud's SEO Help Plugin
CVE-2025-32675

6.8MEDIUM

Key Information:

Vendor: Quantumcloud
Status: Seo Help
Vendor: CVE Published:; 9 April 2025

🔔 Create Quantumcloud Vulnerability Alert

What is CVE-2025-32675?

The SEO Help plugin by QuantumCloud contains a vulnerability that allows Server-Side Request Forgery (SSRF). This can enable malicious actors to send unauthorized requests to internal services and resources, potentially leading to the exposure of sensitive data. Users of SEO Help versions from n/a to 6.6.0 are at risk. It is crucial for webmasters and administrators to ensure they are using the latest version to mitigate this security issue.

Affected Version(s)

SEO Help 0 <= 6.7.9

References

https://patchstack.com/database/Wordpress/Plugin/seo-help...

vdb-entry

CVSS V3.1

Score:

6.8

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 9, 2025
Vulnerability Reserved
Apr 9, 2025

Credit

Phan Trong Quan - VNPT Cyber Immunity (Patchstack Alliance)

CVE-2025-32675 Data

JSON