Google WordPress Plug-in Bug Allows AWS Metadata Theft
from DarkReading 22 December indexed on 22 December 2022 20:01A successful attacker could use the SSRF vulnerability to collect metadata from WordPress sites hosted on an AWS server, and potentially log in to a cloud instance to run commands.
Read more.