Amazon Products to WooCommerce <= 1.2.7 - Falsificación de Solicitud del Servidor No Autenticada

The SSRF vulnerability in Amazon Products to WooCommerce enables attackers to craft malicious requests that originate from the plugin itself. This can be exploited to query internal services that are not directly accessible from the outside world. An attacker could potentially retrieve sensitive data, modify configurations, or even trigger actions on internal systems. The blast radius extends to any internal resources accessible via HTTP or HTTPS from the WordPress server. This vulnerability is particularly concerning as it requires no authentication, making it easily exploitable by a wide range of attackers.

WordPress websites utilizing the Amazon Products to WooCommerce plugin, particularly those with internal services accessible via HTTP or HTTPS, are at risk. Shared hosting environments are especially vulnerable as they often have limited control over plugin updates and configurations. Legacy WordPress installations running older versions of PHP or with outdated security practices are also at increased risk.

• wordpress / composer / npm:

grep -r 'wcta2w_get_urls()' /var/www/html/wp-content/plugins/amazon-products-to-woocommerce/*

• generic web:

curl -I https://your-wordpress-site.com/wp-content/plugins/amazon-products-to-woocommerce/ | grep Server

• wordpress / composer / npm:

wp plugin list | grep 'amazon-products-to-woocommerce'

• wordpress / composer / npm:

wp plugin status | grep 'amazon-products-to-woocommerce'

1. 2025-07-02Disclosure

   disclosure

1. Reservado2025-06-06
2. Publicada2025-07-02
3. Modificada2026-04-08
4. EPSS actualizado2026-03-23

The primary mitigation for CVE-2025-5817 is to immediately upgrade the Amazon Products to WooCommerce plugin to version 1.2.8 or later. If upgrading is not immediately feasible, consider implementing a Web Application Firewall (WAF) rule to block outbound requests to suspicious or internal IP addresses. Additionally, restrict network access to the WordPress server to only necessary ports and services. Regularly review WordPress plugin configurations and disable any unnecessary plugins to reduce the attack surface.