PT-2026-25258 · Gift Up! · Gift Up Gift Cards For Wordpress/Woocommerce

Nguyen Ba Khanh

·

Publicado

2026-03-13

·

Atualizado

2026-03-14

·

CVE-2026-32412

CVSS v3.1

5.4

Média

VetorAV:N/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:N
Name of the Vulnerable Software and Affected Versions Gift Up! Gift Up Gift Cards for WordPress and WooCommerce versions through 3.1.7
Description The software contains a Server-Side Request Forgery (SSRF) issue. This allows for Server Side Request Forgery. The vulnerability exists due to insufficient input validation, potentially allowing an attacker to make requests to unintended locations.
Recommendations Update to a version later than 3.1.7.

Correção

SSRF

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-918

Identificadores relacionados

CVE-2026-32412

Produtos afetados

Gift Up Gift Cards For Wordpress/Woocommerce