Really Simple Security logo

Log out
Get PRO

Latest

Input validation vulnerability in WappPress – Create Mobile App for any WordPress site with our Mobile App Builder in just 1 minute 6.0.4

  • Severity: medium-risk
  • Status: Open
  • Publication: July 11, 2024

The WappPress plugin for WordPress allows users to easily create a mobile app for their website in just one minute. However, it has been found that this plugin is vulnerable to a type of attack called Server-Side Request Forgery. This means that someone with the right permissions can make requests to any location on the internet using the website’s own app. This could potentially be used to access and change sensitive information from internal services.

Detected in:

WappPress – Convert Site to App Fast – WordPress to Mobile App Builder – Flutter App Builder fixed vulnerable versions:
WappPress – Create Mobile App for any WordPress site with our Flutter Mobile App Builder in just 1 minute fixed vulnerable versions:
WordPress to Mobile App Builder – WappPress – Convert Site to App Fast – Flutter App Builder fixed vulnerable versions:
WordPress to Mobile App Builder – WappPress – Convert Site to App Fast – Flutter Based fixed vulnerable versions:
WappPress – Create Mobile App for any WordPress site with our Mobile App Builder in just 1 minute open vulnerable versions: >= * <= 6.0.4

This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!

Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:

> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21

  • Incorrect?

Is this information incorrect? Please leave us a message.