6.5

CVE-2021-24467

Exploit

Leaflet Map < 3.0.0 - Arbitrary Settings Update via CSRF Leading to Stored XSS

Leaflet Map < 3.0.0 - Cross-Site Request Forgery to Stored Cross-Site Scripting

The Leaflet Map WordPress plugin before 3.0.0 does not verify the CSRF nonce when saving its settings, which allows attackers to make a logged in admin update the settings via a Cross-Site Request Forgery attack. This could lead to Cross-Site Scripting issues by either changing the URL of the JavaScript library being used, or using malicious attributions which will be executed in all page with an embed map from the plugin
Mögliche Gegenmaßnahme
Leaflet Map: Update to version 3.0.0, or a newer patched version
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Leaflet Map ProjectLeaflet Map SwPlatformwordpress Version < 3.0.0
Weitere Schwachstelleninformationen
SystemWordPress Plugin
Produkt Leaflet Map
Version *-2.23.3
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.56% 0.421
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 6.5 2.8 3.6
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
nvd@nist.gov 4.3 8.6 2.9
AV:N/AC:M/Au:N/C:N/I:P/A:N
CWE-352 Cross-Site Request Forgery (CSRF)

The web application does not, or can not, sufficiently verify whether a well-formed, valid, consistent request was intentionally provided by the user who submitted the request.

CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.

https://wpscan.com/vulnerability/ac32d265-066e-49ec-9042-3145cd99e2e8
Third Party Advisory
Exploit
https://www.wordfence.com/threat-intel/vulnerabilities/id/b0d7e56d-453f-4df0-8cf5-32d8bafc60d5
Third Party Advisory