exploitDog

CVE-2021-24686

Опубликовано: 01 фев. 2022

Источник: nvd

CVSS3: 4.8

CVSS2: 3.5

EPSS Низкий

Описание

The SVG Support WordPress plugin before 2.3.20 does not escape the "CSS Class to target" setting before outputting it in an attribute, which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed.

Ссылки

https://plugins.trac.wordpress.org/changeset/2651929
Patch
Third Party Advisory
https://wpscan.com/vulnerability/38018695-901d-48d9-b39a-7c00df7f0a4b
Exploit
Third Party Advisory
https://plugins.trac.wordpress.org/changeset/2651929
Patch
Third Party Advisory
https://wpscan.com/vulnerability/38018695-901d-48d9-b39a-7c00df7f0a4b
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:benbodhi:svg_support:*:*:*:*:*:wordpress:*:*

Версия до 2.3.20 (исключая)

EPSS

Процентиль: 43%

0.00206

Низкий

4.8 Medium

CVSS3

3.5 Low

CVSS2

Дефекты

CWE-79

Связанные уязвимости

GHSA-pc73-hr4r-f674

CVSS3: 4.8

github

около 4 лет назад

The SVG Support WordPress plugin before 2.3.20 does not escape the "CSS Class to target" setting before outputting it in an attribute, which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed.

EPSS

Процентиль: 43%

0.00206

Низкий

4.8 Medium

CVSS3

3.5 Low

CVSS2

Дефекты

CWE-79