Description

The Pz-LinkCard WordPress plugin before 2.5.7 does not validate a parameter before making a request to it, which could allow users with a role as low as Contributor to perform SSRF attack.

INFO

Published Date :

2025-10-14T06:00:07.251Z

Last Modified :

2025-10-14T13:39:01.218Z

Source :

WPScan
AFFECTED PRODUCTS

The following products are affected by CVE-2025-8594 vulnerability.

No data.

REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-8594.

URL Resource
https://wpscan.com/vulnerability/17104590-d84e-41b7-83ac-9b15fcfb537a/ cve-icon cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System