CVE-2021-24666

Опубликовано: 27 сент. 2021

Источник: nvd

CVSS3: 9.8

CVSS2: 6.8

EPSS Высокий

Описание

The Podlove Podcast Publisher WordPress plugin before 3.5.6 contains a 'Social & Donations' module (not activated by default), which adds the rest route '/services/contributor/(?P[\d]+), takes an 'id' and 'category' parameters as arguments. Both parameters can be used for the SQLi.

Ссылки

https://github.com/podlove/podlove-publisher/commit/aa8a343a2e2333b34a422f801adee09b020c6d76
Patch
Third Party Advisory
https://wpscan.com/vulnerability/fb4d7988-60ff-4862-96a1-80b1866336fe
Exploit
Patch
Third Party Advisory
https://github.com/podlove/podlove-publisher/commit/aa8a343a2e2333b34a422f801adee09b020c6d76
Patch
Third Party Advisory
https://wpscan.com/vulnerability/fb4d7988-60ff-4862-96a1-80b1866336fe
Exploit
Patch
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:podlove:podlove_podcast_publisher:*:*:*:*:*:wordpress:*:*

Версия до 3.5.6 (исключая)

EPSS

Процентиль: 99%

0.80649

Высокий

9.8 Critical

CVSS3

6.8 Medium

CVSS2

Дефекты

CWE-89

Связанные уязвимости

GHSA-2c3j-j92w-h38q

github

больше 3 лет назад

The Podlove Podcast Publisher WordPress plugin before 3.5.6 contains a 'Social & Donations' module (not activated by default), which adds the rest route '/services/contributor/(?P<id>[\d]+), takes an 'id' and 'category' parameters as arguments. Both parameters can be used for the SQLi.