exploitDog

CVE-2021-24721

Опубликовано: 08 нояб. 2021

Источник: nvd

CVSS3: 6.5

CVSS2: 4

EPSS Низкий

Описание

The Loco Translate WordPress plugin before 2.5.4 mishandles data inputs which get saved to a file, which can be renamed to an extension ending in .php, resulting in authenticated "translator" users being able to inject PHP code into files ending with .php in web accessible locations.

Ссылки

https://wpscan.com/vulnerability/bc7d4774-fce8-4b0b-8015-8ef4c5b02d38
Exploit
Third Party Advisory
https://wpscan.com/vulnerability/bc7d4774-fce8-4b0b-8015-8ef4c5b02d38
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:loco_translate_project:loco_translate:*:*:*:*:*:wordpress:*:*

Версия до 2.5.4 (исключая)

EPSS

Процентиль: 51%

0.00282

Низкий

6.5 Medium

CVSS3

4 Medium

CVSS2

Дефекты

CWE-94

Связанные уязвимости

GHSA-8mj6-23hc-v88f

github

больше 3 лет назад

The Loco Translate WordPress plugin before 2.5.4 mishandles data inputs which get saved to a file, which can be renamed to an extension ending in .php, resulting in authenticated "translator" users being able to inject PHP code into files ending with .php in web accessible locations.

EPSS

Процентиль: 51%

0.00282

Низкий

6.5 Medium

CVSS3

4 Medium

CVSS2

Дефекты

CWE-94