CVE-2021-4445

Опубликовано: 16 окт. 2024

Источник: nvd

CVSS3: 6.5

CVSS3: 4.3

EPSS Низкий

Описание

The Premium Addons for Elementor plugin for WordPress is vulnerable to Arbitrary Option Updates in versions up to, and including, 4.5.1. This is due to missing capability and nonce checks in the pa_dismiss_admin_notice AJAX action. This makes it possible for authenticated subscriber+ attackers to change arbitrary options with a restricted value of 1 on vulnerable WordPress sites.

Ссылки

https://ithemes.com/blog/wordpress-vulnerability-report-september-2021-part-2/#ib-toc-anchor-2
Mailing List
Third Party Advisory
https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&old=2590819%40premium-addons-for-elementor&new=2590819%40premium-addons-for-elementor&sfp_email=&sfph_mail=
Patch
https://wordpress.org/plugins/premium-addons-for-elementor/
Product
https://wpscan.com/vulnerability/2e5b3608-1dfc-468f-b3ae-12ce7c25ee6c
Exploit
Third Party Advisory
https://www.wordfence.com/threat-intel/vulnerabilities/id/cffb26bc-3d3f-4593-bb36-d2abcd67861e?source=cve
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:leap13:premium_addons_for_elementor:*:*:*:*:*:wordpress:*:*

Версия до 4.5.2 (исключая)

EPSS

Процентиль: 33%

0.00131

Низкий

6.5 Medium

CVSS3

4.3 Medium

CVSS3

Дефекты

CWE-862

Связанные уязвимости

GHSA-3368-73h5-mjmr

CVSS3: 6.5

github

больше 1 года назад

EPSS

Процентиль: 33%

0.00131

Низкий

6.5 Medium

CVSS3

4.3 Medium

CVSS3

Дефекты

CWE-862