CVE-2021-24299

Exploit

EPSS 5.53%
Veröffentlicht 17.05.2021 17:15:08
Zuletzt bearbeitet 21.11.2024 05:52:47
Quelle contact@wpscan.com
CVE-Watchlists
Login
Unerledigt
Login

ReDi Restaurant Reservations < 21.0426 - Unauthenticated Stored Cross-Site Scripting (XSS)

ReDi Restaurant Reservation <= 21.0307 - Stored Cross-Site Scripting

The ReDi Restaurant Reservation WordPress plugin before 21.0426 provides the functionality to let users make restaurant reservations. These reservations are stored and can be listed on an 'Upcoming' page provided by the plugin. An unauthenticated user can fill in the form to make a restaurant reservation. The form to make a restaurant reservation field called 'Comment' does not use proper input validation and can be used to store XSS payloads. The XSS payloads will be executed when the plugin user goes to the 'Upcoming' page, which is an external website https://upcoming.reservationdiary.eu/ loaded in an iframe, and the stored reservation with XSS payload is loaded.

Mögliche Gegenmaßnahme

ReDi Restaurant Reservation – Instant Availability & Confirmation: Update to version 21.0426, or a newer patched version

Betroffene Produkte Warnungen 0 Metriken 3 CWE 1 Referenzen 6

NVD 1 VulnDex Vulnerability Enrichment 1

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Catzsoft ≫ Redi Restaurant Reservation SwPlatformwordpress Version < 21.0426

Weitere Schwachstelleninformationen

SystemWordPress Plugin

≫

Produkt ReDi Restaurant Reservation – Instant Availability & Confirmation

Version *-21.0307

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	5.53%	0.918

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	6.1	2.8	2.7	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
nvd@nist.gov	4.3	8.6	2.9	AV:N/AC:M/Au:N/C:N/I:P/A:N

CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.

http://packetstormsecurity.com/files/162756/WordPress-ReDi-Restaurant-Reservation-21.0307-Cross-Site-Scripting.html

Third Party Advisory

Exploit

https://wpscan.com/vulnerability/fd6ce00b-8c5f-4180-b648-f47b37303670

Third Party Advisory

Exploit

https://www.wordfence.com/threat-intel/vulnerabilities/id/6e0384c0-9b34-4af8-af86-75ef1e8d933b

Third Party Advisory

https://nvd.nist.gov/vuln/detail/CVE-2021-24299

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2021-24299

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2021-24299

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2021-24299