CVE-2021-34619

Опубликовано: 21 июл. 2021

Источник: nvd

CVSS3: 8.8

CVSS2: 6.8

EPSS Низкий

Описание

The WooCommerce Stock Manager WordPress plugin is vulnerable to Cross-Site Request Forgery leading to Arbitrary File Upload in versions up to, and including, 2.5.7 due to missing nonce and file validation in the /woocommerce-stock-manager/trunk/admin/views/import-export.php file.

Ссылки

https://plugins.trac.wordpress.org/browser/woocommerce-stock-manager/trunk/admin/views/import-export.php?rev=2499178
Exploit
Third Party Advisory
https://www.wordfence.com/blog/2021/06/high-severity-vulnerability-patched-in-woocommerce-stock-manager-plugin/
Exploit
Third Party Advisory
https://plugins.trac.wordpress.org/browser/woocommerce-stock-manager/trunk/admin/views/import-export.php?rev=2499178
Exploit
Third Party Advisory
https://www.wordfence.com/blog/2021/06/high-severity-vulnerability-patched-in-woocommerce-stock-manager-plugin/
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:storeapps:stock_manager_for_woocommerce:*:*:*:*:*:wordpress:*:*

Версия до 2.5.7 (включая)

EPSS

Процентиль: 30%

0.00109

Низкий

8.8 High

CVSS3

6.8 Medium

CVSS2

Дефекты

CWE-352

Связанные уязвимости

GHSA-mvp7-wp4v-3h3h

CVSS3: 8.8

github

больше 3 лет назад

BDU:2021-04503

CVSS3: 8.8

fstec

почти 5 лет назад

Уязвимость реализации сценария /woocommerce-stock-manager/trunk/admin/views/import-export.php функции импорта/экспорта плагина WooCommerce Stock Manager системы управления содержимым сайта WordPress, позволяющая нарушителю осуществить CSRF-атаку

EPSS

Процентиль: 30%

0.00109

Низкий

8.8 High

CVSS3

6.8 Medium

CVSS2

Дефекты

CWE-352