cve/2022/CVE-2022-1386.md

### [CVE-2022-1386](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1386)
![](https://img.shields.io/static/v1?label=Product&message=Fusion%20Builder&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=3.6.2%3C%203.6.2%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-918%20Server-Side%20Request%20Forgery%20(SSRF)&color=brighgreen)

### Description

The Fusion Builder WordPress plugin before 3.6.2, used in the Avada theme, does not validate a parameter in its forms which could be used to initiate arbitrary HTTP requests. The data returned is then reflected back in the application's response. This could be used to interact with hosts on the server's local network bypassing firewalls and access control measures.

### POC

#### Reference
- https://wpscan.com/vulnerability/bf7034ab-24c4-461f-a709-3f73988b536b
- https://wpscan.com/vulnerability/bf7034ab-24c4-461f-a709-3f73988b536b
- https://www.rootshellsecurity.net/rootshell-discovered-a-critical-vulnerability-in-top-wordpress-theme/
- https://www.rootshellsecurity.net/rootshell-discovered-a-critical-vulnerability-in-top-wordpress-theme/

#### Github
- https://github.com/ARPSyndicate/cvemon
- https://github.com/ARPSyndicate/kenzer-templates
- https://github.com/ardzz/CVE-2022-1386
- https://github.com/im-hanzou/fubucker
- https://github.com/imhunterand/CVE-2022-1386
- https://github.com/leoambrus/CheckersNomisec
- https://github.com/nomi-sec/PoC-in-GitHub
- https://github.com/satyasai1460/CVE-2022-1386
- https://github.com/zycoder0day/CVE-2022-1386-Mass_Vulnerability
Update Sat May 25 21:48:12 CEST 2024 2024-05-25 21:48:12 +02:00			`### [CVE-2022-1386](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1386)`
			`![](https://img.shields.io/static/v1?label=Product&message=Fusion%20Builder&color=blue)`
			`![](https://img.shields.io/static/v1?label=Version&message=3.6.2%3C%203.6.2%20&color=brighgreen)`
			`![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-918%20Server-Side%20Request%20Forgery%20(SSRF)&color=brighgreen)`

			`### Description`

			`The Fusion Builder WordPress plugin before 3.6.2, used in the Avada theme, does not validate a parameter in its forms which could be used to initiate arbitrary HTTP requests. The data returned is then reflected back in the application's response. This could be used to interact with hosts on the server's local network bypassing firewalls and access control measures.`

			`### POC`

			`#### Reference`
			`- https://wpscan.com/vulnerability/bf7034ab-24c4-461f-a709-3f73988b536b`
Update CVE sources 2024-06-09 00:33 2024-06-09 00:33:16 +00:00			`- https://wpscan.com/vulnerability/bf7034ab-24c4-461f-a709-3f73988b536b`
Update Sat May 25 21:48:12 CEST 2024 2024-05-25 21:48:12 +02:00			`- https://www.rootshellsecurity.net/rootshell-discovered-a-critical-vulnerability-in-top-wordpress-theme/`
Update CVE sources 2024-06-09 00:33 2024-06-09 00:33:16 +00:00			`- https://www.rootshellsecurity.net/rootshell-discovered-a-critical-vulnerability-in-top-wordpress-theme/`
Update Sat May 25 21:48:12 CEST 2024 2024-05-25 21:48:12 +02:00
			`#### Github`
			`- https://github.com/ARPSyndicate/cvemon`
			`- https://github.com/ARPSyndicate/kenzer-templates`
			`- https://github.com/ardzz/CVE-2022-1386`
			`- https://github.com/im-hanzou/fubucker`
			`- https://github.com/imhunterand/CVE-2022-1386`
			`- https://github.com/leoambrus/CheckersNomisec`
			`- https://github.com/nomi-sec/PoC-in-GitHub`
			`- https://github.com/satyasai1460/CVE-2022-1386`
			`- https://github.com/zycoder0day/CVE-2022-1386-Mass_Vulnerability`