CVE-2021-24750

Опубликовано: 21 дек. 2021

Источник: nvd

CVSS3: 8.8

CVSS2: 6.5

EPSS Средний

Описание

The WP Visitor Statistics (Real Time Traffic) WordPress plugin before 4.8 does not properly sanitise and escape the refUrl in the refDetails AJAX action, available to any authenticated user, which could allow users with a role as low as subscriber to perform SQL injection attacks

Ссылки

http://packetstormsecurity.com/files/165433/WordPress-WP-Visitor-Statistics-4.7-SQL-Injection.html
Exploit
Third Party Advisory
VDB Entry
https://plugins.trac.wordpress.org/changeset/2622268
Patch
Third Party Advisory
https://wpscan.com/vulnerability/7528aded-b8c9-4833-89d6-9cd7df3620de
Exploit
Third Party Advisory
http://packetstormsecurity.com/files/165433/WordPress-WP-Visitor-Statistics-4.7-SQL-Injection.html
Exploit
Third Party Advisory
VDB Entry
https://plugins.trac.wordpress.org/changeset/2622268
Patch
Third Party Advisory
https://wpscan.com/vulnerability/7528aded-b8c9-4833-89d6-9cd7df3620de
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:wp_visitor_statistics_\(real_time_traffic\)_project:wp_visitor_statistics_\(real_time_traffic\):*:*:*:*:*:wordpress:*:*

Версия до 4.8 (исключая)

EPSS

Процентиль: 99%

0.69507

Средний

8.8 High

CVSS3

6.5 Medium

CVSS2

Дефекты

CWE-89

Связанные уязвимости

GHSA-p934-c89c-rc2m