exploitDog

CVE-2021-25075

Опубликовано: 21 фев. 2022

Источник: nvd

CVSS3: 3.5

CVSS2: 3.5

EPSS Средний

Описание

The Duplicate Page or Post WordPress plugin before 1.5.1 does not have any authorisation and has a flawed CSRF check in the wpdevart_duplicate_post_parametrs_save_in_db AJAX action, allowing any authenticated users, such as subscriber to call it and change the plugin's settings, or perform such attack via CSRF. Furthermore, due to the lack of escaping, this could lead to Stored Cross-Site Scripting issues

Ссылки

https://wpscan.com/vulnerability/db5a0431-af4d-45b7-be4e-36b6c90a601b
Exploit
Third Party Advisory
https://wpscan.com/vulnerability/db5a0431-af4d-45b7-be4e-36b6c90a601b
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:wpdevart:duplicate_page_or_post:*:*:*:*:*:wordpress:*:*

Версия до 1.5.1 (исключая)

EPSS

Процентиль: 94%

0.12492

Средний

3.5 Low

CVSS3

3.5 Low

CVSS2

Дефекты

CWE-862

Связанные уязвимости

GHSA-mm58-v9gq-hfr3

github

почти 4 года назад

The Duplicate Page or Post WordPress plugin before 1.5.1 does not have any authorisation and has a flawed CSRF check in the wpdevart_duplicate_post_parametrs_save_in_db AJAX action, allowing any authenticated users, such as subscriber to call it and change the plugin's settings, or perform such attack via CSRF. Furthermore, due to the lack of escaping, this could lead to Stored Cross-Site Scripting issues

EPSS

Процентиль: 94%

0.12492

Средний

3.5 Low

CVSS3

3.5 Low

CVSS2

Дефекты

CWE-862