Xagio SEO WordPress Plugin Server-Side Request Forgery Vulnerability

A server-side request forgery (SSRF) vulnerability has been identified in the Xagio SEO plugin for WordPress, affecting all versions through 7.1.0.30. The vulnerability arises in the 'pixabayDownloadImage' function, where authenticated attackers with Subscriber-level access or higher can send web requests to arbitrary locations. This could be exploited to query and modify information from internal services.

Impact

Exploitation of this vulnerability allows for server-side request forgery, where an attacker can make requests from the server to internal or external resources, potentially leading to unauthorized data access or modification.

Reproduction

To reproduce this vulnerability, an authenticated user with Subscriber-level access or higher can use the 'pixabayDownloadImage' function. This can be done by sending a request to the WordPress admin-ajax.php endpoint with the appropriate image URL and title parameters, after verifying that the image source is from Pixabay.

Remediation

Users are advised to update the Xagio SEO plugin to version 7.1.0.31 or later.