Ask Your Question

Revision history [back]

click to hide/show revision 1
initial version

answered 2021-04-11 15:00:00 +0000

scrum gravatar image

Unauthenticated Blind SSRF via DNS Rebinding vulnerability in WP version 6.1.1 and lower allows unauthenticated attackers to perform server-side request forgery (SSRF) attacks. This vulnerability occurs when an attacker can control the DNS settings of their victim's network or machine, which they can then use to redirect requests from the vulnerable application to their own server or arbitrary servers. This could potentially allow an attacker to bypass security measures and gain access to sensitive data or execute arbitrary code on the server, leading to various types of attacks such as data exfiltration or complete server takeover.


Copyright QStack.ai, 2010-2023. Content on this site is licensed under the Creative Commons Attribution Share Alike 3.0 license.
about | faq | help | privacy policy | terms of service | contact