CVE-2024-13940 – Ninja Forms Webhooks SSRF Vulnerability

May 14, 2025

CVE ID : CVE-2024-13940

Published : May 14, 2025, 9:15 a.m. | 2 hours, 52 minutes ago

Description : The Ninja Forms Webhooks plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 3.0.7 via the form webhook functionality. This makes it possible for authenticated attackers, with Administrator-level access and above, to make web requests to arbitrary locations originating from the web application and can be used to query and modify information from internal services.

Severity: 5.5 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2024-8988 – PeepSo Core: File Uploads Plugin WordPress Insecure Direct Object Reference

Next Article This AI Paper Investigates Test-Time Scaling of English-Centric RLMs for Enhanced Multilingual Reasoning and Domain Generalization

How AI further empowers value stream management

12 Top ReactJS Development Companies in 2025

Not sure where to go with AI? Here’s your roadmap.

This week in AI dev tools: A2A donated to Linux Foundation, OpenAI adds Deep Research to API, and more (June 27, 2025)

With Gears of War: Reloaded on the way, which Xbox 360 game would you like to see get rebuilt next? — Weekend discussion 💬

Capcom’s finally giving Street Fighter 6 players the outfits they’ve wanted — when all else fails, send in swimsuits

After 14 years, Monster Hunter Wilds is bringing back underwater combat alongside “Lagiacrus” and another familiar monster — the impossible has happened

OpenAI may prematurely declare AGI to cut ties with Microsoft — despite Sam Altman admitting today’s tech isn’t built for it

How Code Feedback MCP Enhances AI-Generated Code Quality

How Code Feedback MCP Enhances AI-Generated Code Quality

PRSS Site Creator – Create Blogs and Websites from Your Desktop

Say hello to ECMAScript 2025

With Gears of War: Reloaded on the way, which Xbox 360 game would you like to see get rebuilt next? — Weekend discussion 💬

With Gears of War: Reloaded on the way, which Xbox 360 game would you like to see get rebuilt next? — Weekend discussion 💬

Jasmine – web launcher and session management application

Schulrechner – calculator you know from school

CVE-2024-13940 – Ninja Forms Webhooks SSRF Vulnerability

CVE-2025-6836 – Code-projects Library System SQL Injection Vulnerability

CVE-2025-6837 – Code-projects Library System Unrestricted File Upload Vulnerability

CVE-2025-44887 – Fujitsu Workstation WGS-804HPT Stack Overflow Vulnerability

How can we build human values into AI?

CVE-2025-47725 – Delta Electronics CNCSoft Remote Code Execution Vulnerability

4 MacOS email clients that might work better for you than Apple Mail

How to Budget Smartly for Your First AI Project: A Step-by-Step Guide💡

NVIDIA’s drivers are causing big problems for DOOM: The Dark Ages, but some fixes are available

CVE-2025-4039 – PHPGurukul Rail Pass Management System SQL Injection

Can You Build Your Dream Website Using AI? These Tools Say You Can

CVE-2024-13940 – Ninja Forms Webhooks SSRF Vulnerability

Related Posts