9.1
CVE-2021-24220
- EPSS 51.29%
- Veröffentlicht 12.04.2021 14:15:15
- Zuletzt bearbeitet 21.11.2024 05:52:37
- Quelle contact@wpscan.com
- CVE-Watchlists
- Unerledigt
LoginMultiple Thrive Themes < 2.0.0 - Arbitrary File Upload
Thrive “Legacy” Rise by Thrive Themes WordPress theme before 2.0.0, Luxe by Thrive Themes WordPress theme before 2.0.0, Minus by Thrive Themes WordPress theme before 2.0.0, Ignition by Thrive Themes WordPress theme before 2.0.0, FocusBlog by Thrive Themes WordPress theme before 2.0.0, Squared by Thrive Themes WordPress theme before 2.0.0, Voice WordPress theme before 2.0.0, Performag by Thrive Themes WordPress theme before 2.0.0, Pressive by Thrive Themes WordPress theme before 2.0.0, Storied by Thrive Themes WordPress theme before 2.0.0 register a REST API endpoint to compress images using the Kraken image optimization engine. By supplying a crafted request in combination with data inserted using the Option Update vulnerability, it was possible to use this endpoint to retrieve malicious code from a remote URL and overwrite an existing file on the site with it or create a new file.This includes executable PHP files that contain malicious code.
Mögliche Gegenmaßnahme
FocusBlog: Update to version 2.0.0, or a newer patched version
Ignition: Update to version 2.0.0, or a newer patched version
Luxe: Update to version 2.0.0, or a newer patched version
Minus: Update to version 2.0.0, or a newer patched version
Performag: Update to version 2.0.0, or a newer patched version
Pressive: Update to version 2.0.0, or a newer patched version
Rise: Update to version 2.0.0, or a newer patched version
Squared: Update to version 2.0.0, or a newer patched version
Storied: Update to version 2.0.0, or a newer patched version
Voice: Update to version 2.0.0, or a newer patched version
Weitere Schwachstelleninformationen
SystemWordPress Theme
≫
Produkt
FocusBlog
Version
[*, 2.0.0)
SystemWordPress Theme
≫
Produkt
Ignition
Version
[*, 2.0.0)
SystemWordPress Theme
≫
Produkt
Luxe
Version
[*, 2.0.0)
SystemWordPress Theme
≫
Produkt
Minus
Version
[*, 2.0.0)
SystemWordPress Theme
≫
Produkt
Performag
Version
[*, 2.0.0)
SystemWordPress Theme
≫
Produkt
Pressive
Version
[*, 2.0.0)
SystemWordPress Theme
≫
Produkt
Rise
Version
[*, 2.0.0)
SystemWordPress Theme
≫
Produkt
Squared
Version
[*, 2.0.0)
SystemWordPress Theme
≫
Produkt
Storied
Version
[*, 2.0.0)
SystemWordPress Theme
≫
Produkt
Voice
Version
[*, 2.0.0)
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Thrivethemes ≫ Focusblog SwPlatformwordpress_ Version < 2.0.0
Thrivethemes ≫ Ignition SwPlatformwordpress Version < 2.0.0
Thrivethemes ≫ Luxe SwPlatformwordpress Version < 2.0.0
Thrivethemes ≫ Minus SwPlatformwordpress Version < 2.0.0
Thrivethemes ≫ Performag SwPlatformwordpress Version < 2.0.0
Thrivethemes ≫ Pressive SwPlatformwordpress Version < 2.0.0
Thrivethemes ≫ Rise SwPlatformwordpress Version < 2.0.0
Thrivethemes ≫ Squared SwPlatformwordpress Version < 2.0.0
Thrivethemes ≫ Storied SwPlatformwordpress Version < 2.0.0
Thrivethemes ≫ Voice SwPlatformwordpress Version < 2.0.0
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 51.29% | 0.978 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 9.1 | 3.9 | 5.2 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H
|
| nvd@nist.gov | 6.4 | 10 | 4.9 |
AV:N/AC:L/Au:N/C:N/I:P/A:P
|
CWE-434 Unrestricted Upload of File with Dangerous Type
The product allows the upload or transfer of dangerous file types that are automatically processed within its environment.