exploitDog

CVE-2021-24792

Опубликовано: 13 дек. 2021

Источник: nvd

CVSS3: 6.1

CVSS2: 4.3

EPSS Средний

Описание

The Shiny Buttons WordPress plugin through 1.1.0 does not have any authorisation and CSRF in place when saving a template (wpbtn_save_template function hooked to the init action), nor sanitise and escape them before outputting them in the admin dashboard, which allow unauthenticated users to add a malicious template and lead to Stored Cross-Site Scripting issues.

Ссылки

https://wpscan.com/vulnerability/29514d8e-9d1c-4fb6-b378-f6b7374989ca
Exploit
Third Party Advisory
https://wpscan.com/vulnerability/29514d8e-9d1c-4fb6-b378-f6b7374989ca
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:wpeden:shiny_buttons:*:*:*:*:*:wordpress:*:*

Версия до 1.1.0 (включая)

EPSS

Процентиль: 94%

0.12126

Средний

6.1 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-79

Связанные уязвимости

GHSA-m65r-7jgg-xwhp

github

около 4 лет назад

The Shiny Buttons WordPress plugin through 1.1.0 does not have any authorisation and CSRF in place when saving a template (wpbtn_save_template function hooked to the init action), nor sanitise and escape them before outputting them in the admin dashboard, which allow unauthenticated users to add a malicious template and lead to Stored Cross-Site Scripting issues.

EPSS

Процентиль: 94%

0.12126

Средний

6.1 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-79