CVE-2021-24752

Exploit

EPSS 0.13%
Veröffentlicht 18.10.2021 14:15:10
Zuletzt bearbeitet 21.11.2024 05:53:41
Quelle contact@wpscan.com
CVE-Watchlists
Login
Unerledigt
Login

CatchThemes Plugins (Various Versions) - Missing Authorization

Multiple Plugins from the CatchThemes vendor do not perform capability and CSRF checks in the ctp_switch AJAX action, which could allow any authenticated users, such as Subscriber to change the Essential Widgets WordPress plugin before 1.9, To Top WordPress plugin before 2.3, Header Enhancement WordPress plugin before 1.5, Generate Child Theme WordPress plugin before 1.6, Essential Content Types WordPress plugin before 1.9, Catch Web Tools WordPress plugin before 2.7, Catch Under Construction WordPress plugin before 1.4, Catch Themes Demo Import WordPress plugin before 1.6, Catch Sticky Menu WordPress plugin before 1.7, Catch Scroll Progress Bar WordPress plugin before 1.6, Social Gallery and Widget WordPress plugin before 2.3, Catch Infinite Scroll WordPress plugin before 1.9, Catch Import Export WordPress plugin before 1.9, Catch Gallery WordPress plugin before 1.7, Catch Duplicate Switcher WordPress plugin before 1.6, Catch Breadcrumb WordPress plugin before 1.7, Catch IDs WordPress plugin before 2.4's configurations.

Mögliche Gegenmaßnahme

Catch Breadcrumb: Update to version 1.7, or a newer patched version

Catch Duplicate Switcher: Update to version 1.6, or a newer patched version

Catch Gallery: Update to version 1.7, or a newer patched version

Catch IDs: Update to version 2.4, or a newer patched version

Catch Import Export: Update to version 1.9, or a newer patched version

Catch Infinite Scroll: Update to version 1.9, or a newer patched version

Social Gallery and Widget: Update to version 2.3, or a newer patched version

Catch Scroll Progress Bar: Update to version 1.6, or a newer patched version

Catch Sticky Menu: Update to version 1.7, or a newer patched version

Catch Themes Demo Import: Update to version 1.6, or a newer patched version

Catch Under Construction: Update to version 1.4, or a newer patched version

Catch Web Tools: Update to version 2.7, or a newer patched version

Essential Content Types: Update to version 1.9, or a newer patched version

Essential Widgets: Update to version 1.9, or a newer patched version

Generate Child Theme: Update to version 1.6, or a newer patched version

Header Enhancement: Update to version 1.5, or a newer patched version

To Top: Update to version 2.3, or a newer patched version

Betroffene Produkte Warnungen 0 Metriken 3 CWE 2 Referenzen 5

Weitere Schwachstelleninformationen

SystemWordPress Plugin

≫

Produkt Catch Breadcrumb

Version [*, 1.7)

SystemWordPress Plugin

≫

Produkt Catch Duplicate Switcher

Version [*, 1.6)

SystemWordPress Plugin

≫

Produkt Catch Gallery

Version [*, 1.7)

SystemWordPress Plugin

≫

Produkt Catch IDs

Version [*, 2.4)

SystemWordPress Plugin

≫

Produkt Catch Import Export

Version [*, 1.9)

SystemWordPress Plugin

≫

Produkt Catch Infinite Scroll

Version [*, 1.9)

SystemWordPress Plugin

≫

Produkt Social Gallery and Widget

Version [*, 2.3)

SystemWordPress Plugin

≫

Produkt Catch Scroll Progress Bar

Version [*, 1.6)

SystemWordPress Plugin

≫

Produkt Catch Sticky Menu

Version [*, 1.7)

SystemWordPress Plugin

≫

Produkt Catch Themes Demo Import

Version [*, 1.6)

SystemWordPress Plugin

≫

Produkt Catch Under Construction

Version [*, 1.4)

SystemWordPress Plugin

≫

Produkt Catch Web Tools

Version [*, 2.7)

SystemWordPress Plugin

≫

Produkt Essential Content Types

Version [*, 1.9)

SystemWordPress Plugin

≫

Produkt Essential Widgets

Version [*, 1.9)

SystemWordPress Plugin

≫

Produkt Generate Child Theme

Version [*, 1.6)

SystemWordPress Plugin

≫

Produkt Header Enhancement

Version [*, 1.5)

SystemWordPress Plugin

≫

Produkt To Top

Version [*, 2.3)

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Catchplugins ≫ Catch Scroll Progress Bar SwPlatformwordpress Version < 1.6

Catchplugins ≫ Catch Sticky Menu SwPlatformwordpress Version < 1.7

Catchplugins ≫ Catch Themes Demo Import SwPlatformwordpress Version < 1.6

Catchplugins ≫ Catch Under Construction SwPlatformwordpress Version < 1.4

Catchplugins ≫ Catch Web Tools SwPlatformwordpress Version < 2.7

Catchplugins ≫ Essential Content Types SwPlatformwordpress Version < 1.9

Catchplugins ≫ Essential Widgets SwPlatformwordpress Version < 1.9

Catchplugins ≫ Generate Child Theme SwPlatformwordpress Version < 1.6

Catchplugins ≫ Header Enhancement SwPlatformwordpress Version < 1.5

Catchplugins ≫ To Top SwPlatformwordpress Version < 2.3

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.13%	0.329

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	5.7	2.1	3.6	CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:N
nvd@nist.gov	3.5	6.8	2.9	AV:N/AC:M/Au:S/C:N/I:P/A:N

CWE-284 Improper Access Control

The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.

CWE-352 Cross-Site Request Forgery (CSRF)

The web application does not, or can not, sufficiently verify whether a well-formed, valid, consistent request was intentionally provided by the user who submitted the request.

https://wpscan.com/vulnerability/181a729e-fffe-457c-9e8d-a4343fd2e630

Third Party Advisory

Exploit

https://www.wordfence.com/threat-intel/vulnerabilities/id/ba5656b9-615d-4764-974a-301d3dd748e8

Third Party Advisory

https://nvd.nist.gov/vuln/detail/CVE-2021-24752

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2021-24752

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2021-24752

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2021-24752