CVE-2021-24892

Exploit

EPSS 1.68%
Published 23.11.2021 20:15:10
Last modified 21.11.2024 05:53:57
Source contact@wpscan.com
Teams watchlist Login
Open Login

Insecure Direct Object Reference in edit function of Advanced Forms (Free & Pro) before 1.6.9 allows authenticated remote attacker to change arbitrary user's email address and request for reset password, which could lead to take over of WordPress's administrator account. To exploit this vulnerability, an attacker must register to obtain a valid WordPress's user and use such user to authenticate with WordPress in order to exploit the vulnerable edit function.

Affected products Warnungen 0 Metrics 3 CWE 1 References 5

Data is provided by the National Vulnerability Database (NVD)

Advanced Forms Project ≫ Advanced Forms SwEditionfree SwPlatformwordpress Version < 1.6.9

Advanced Forms Project ≫ Advanced Forms SwEditionpro SwPlatformwordpress Version < 1.6.9

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	1.68%	0.804

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	8.8	2.8	5.9	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
nvd@nist.gov	6.5	8	6.4	AV:N/AC:L/Au:S/C:P/I:P/A:P

CWE-639 Authorization Bypass Through User-Controlled Key

The system's authorization functionality does not prevent one user from gaining access to another user's data or record by modifying the key value identifying the data.

https://github.com/advancedforms/advanced-forms/commit/2ce3ab6985c3a909eefb01c562995bc6a994d3a2

Patch

Third Party Advisory

https://wpscan.com/vulnerability/364b0843-a990-4204-848a-60c928cc5bc0

Third Party Advisory

Exploit

https://nvd.nist.gov/vuln/detail/CVE-2021-24892

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2021-24892

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2021-24892

EUVD