WP Scraper WordPress Plugin Server-Side Request Forgery Vulnerability

A Server-Side Request Forgery (SSRF) vulnerability has been identified in the WP Scraper plugin for WordPress, affecting all versions through 5.8.1. The vulnerability arises in the 'wp_scraper_extract_content' function, allowing authenticated attackers with Administrator-level access to make web requests to arbitrary locations. This could be exploited to query and modify information from internal services. On Cloud instances, the vulnerability could be used to retrieve metadata.

Impact

Exploitation of this vulnerability could lead to unauthorized web requests being made from the WordPress application, potentially allowing attackers to access or modify information from internal services. On Cloud instances, this could include retrieving sensitive metadata.

Reproduction

To reproduce this vulnerability, an authenticated user with Administrator-level access can use the WP Scraper plugin to initiate a content extraction process. During this process, the plugin's 'wp_scraper_extract_content' function can be exploited to send requests to internal services, taking advantage of the SSRF vulnerability.

Remediation

No known patch is available for this vulnerability. Users are advised to review the vulnerability details and consider uninstalling the affected plugin.