Pingback vulnerability exists in the WordPress blogging platform that could leak information and lead to distributed denial of service (DDoS) attacks. A new tool has been released that automates the pingback vulnerability autonomously, distributed on the software development site Github as “WordPressPingbackPortScanner” Tool exposes the API and lets attackers scan other hosts, multiple WordPress blogs and with a specialized URL, reconfigure routers. The bug is already reported on WordPress community, but the ticket was closed at the time after someone argued that “there are so many ways to orchestrate a DDOS attack”
Source: https://thehackernews.com/2012/12/wordpress-pingback-vulnerability-serves.html