CVE-2021-24196

Опубликовано: 05 апр. 2021

Источник: nvd

CVSS3: 5.4

CVSS2: 3.5

EPSS Низкий

Описание

The Social Slider Widget WordPress plugin before 1.8.5 allowed Authenticated Reflected XSS in the plugin settings page as the ‘token_error’ parameter can be controlled by users and it is directly echoed without being sanitized

Ссылки

https://purinechu.github.io/posts/social_slider_widget_reflected_xss/
Exploit
Third Party Advisory
https://wpscan.com/vulnerability/bb20d732-a5e4-4140-ab51-b2aa1a53db12
Exploit
Third Party Advisory
https://purinechu.github.io/posts/social_slider_widget_reflected_xss/
Exploit
Third Party Advisory
https://wpscan.com/vulnerability/bb20d732-a5e4-4140-ab51-b2aa1a53db12
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:cm-wp:social_slider_widget:*:*:*:*:*:wordpress:*:*

Версия до 1.8.5 (исключая)

EPSS

Процентиль: 58%

0.00363

Низкий

5.4 Medium

CVSS3

3.5 Low

CVSS2

Дефекты

CWE-79

Связанные уязвимости

GHSA-m86p-9hj8-wr2g

github

больше 3 лет назад

The Social Slider Widget WordPress plugin before 1.8.5 allowed Authenticated Reflected XSS in the plugin settings page as the â€˜token_errorâ€™ parameter can be controlled by users and it is directly echoed without being sanitized