PT-2022-14097 · WordPress · Hot Linked Image Cacher

Daniel Ruf

Published

2022-06-13

Updated

2022-06-21

CVE-2022-1765

CVSS v3.1

8.8

High

Vector

AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Hot Linked Image Cacher WordPress plugin versions 1.16 and earlier

Description The issue allows for CSRF, which can be utilized to store or cache images from external domains on the server. This could lead to legal risks due to potential copyright violations or licensing rule breaches.

Recommendations For Hot Linked Image Cacher WordPress plugin versions 1.16 and earlier, update to a version that addresses the CSRF issue to prevent potential legal risks associated with caching images from external domains.

Exploit

Fix

CSRF

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-352

Related Identifiers

CVE-2022-1765

Affected Products

Hot Linked Image Cacher

PT-2022-14097 · WordPress · Hot Linked Image Cacher

CVE-2022-1765

Weakness Enumeration

Related Identifiers

Affected Products

References · 3