Ask Your Question

Revision history [back]

click to hide/show revision 1
initial version

answered 2021-07-02 07:00:00 +0000

djk gravatar image

The solution for the vulnerability "WP <= 6.1.1 - Unauthenticated Blind SSRF via DNS Rebinding" is to upgrade to a version of WordPress higher than 5.1.1, as this vulnerability was fixed in version 5.1.2. If you are unable to upgrade immediately, you can patch the vulnerability by adding the following code to your wp-config.php file:

define('WPHTTPBLOCK_EXTERNAL', true);

This code will prevent WordPress from making any external HTTP requests, which will prevent the vulnerability from being exploited. However, this may break some plugins or features that rely on external HTTP requests, so it is recommended to only use this as a temporary solution until the WordPress version can be upgraded.


Copyright QStack.ai, 2010-2023. Content on this site is licensed under the Creative Commons Attribution Share Alike 3.0 license.
about | faq | help | privacy policy | terms of service | contact