CVE-2021-24252

Exploit

EPSS 1%
Veröffentlicht 06.05.2021 13:15:11
Zuletzt bearbeitet 21.11.2024 05:52:41
Quelle contact@wpscan.com
Teams Watchlist Login
Unerledigt Login

The Event Banner WordPress plugin through 1.3 does not verify the uploaded image file, allowing admin accounts to upload arbitrary files, such as .exe, .php, or others executable, leading to RCE. Due to the lack of CSRF check, the issue can also be used via such vector to achieve the same result, or via a LFI as authorisation checks are missing (but would require WP to be loaded)

Betroffene Produkte Warnungen 0 Metriken 3 CWE 1 Referenzen 5

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Wp-eventmanager ≫ Event Banner SwPlatformwordpress Version <= 1.3

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	1%	0.76

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.2	1.2	5.9	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
nvd@nist.gov	6.5	8	6.4	AV:N/AC:L/Au:S/C:P/I:P/A:P

CWE-434 Unrestricted Upload of File with Dangerous Type

The product allows the upload or transfer of dangerous file types that are automatically processed within its environment.

https://github.com/jinhuang1102/CVE-ID-Reports/blob/master/Event%20Banner.md

Broken Link

https://wpscan.com/vulnerability/91e81c6d-f24d-4f87-bc13-746715af8f7c

Third Party Advisory

Exploit

https://nvd.nist.gov/vuln/detail/CVE-2021-24252

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2021-24252

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2021-24252

EUVD