cleantalk
Vulnerabilities and Security Researches

Canto, CVE-2020-24063

CVE, Research URL

CVE-2020-24063

Home page URL

Security reports for Canto

Application

Canto

Published on
Nov 11, 2020
Research Description
The Canto plugin 1.3.0 for WordPress allows includes/lib/download.php?subdomain= SSRF.
Affected versions
max 2.1.1.
Status
vulnerable
Previous vulnerability researches
Canto (CVE-2020-24063) , Jun 10, 2024
Canto (CVE-2020-28977) , Jun 10, 2024
Canto (CVE-2023-3452) , Jun 10, 2024
Canto (CVE-2024-25096) , Jun 10, 2024
Canto (CVE-2026-6441) , Apr 19, 2026
New vulnerability
Popup Box – new WordPress popup plugin (CVE-2025-12122) , Apr 19, 2026
KiviCare – Clinic & Patient Management System (EHR) (CVE-2026-0927) , Apr 19, 2026
Terms Dictionary (CVE-2025-39534) , Apr 19, 2026
Quiz Maker (CVE-2025-58015) , Apr 19, 2026
Canto (CVE-2026-6441) , Apr 19, 2026