CVE-2020-24149

Summary:

Server-side request forgery (SSRF) in the Podcast Importer SecondLine (podcast-importer-secondline) plugin 1.1.4 for WordPress via the podcast_feed parameter in a secondline_import_initialize action to the secondlinepodcastimport page.

Reference Links(if available):

https://wordpress.org/plugins/podcast-importer-secondline/#developers

https://github.com/secwx/research/blob/main/cve/CVE-2020-24149.md

CVSS Score (if available)

v2: / MEDIUM

v3: /

Links to Exploits(if available)