← Voltar para CVEs

CVE-2021-25032

CRITICAL

9.8

Descricao

The PublishPress Capabilities WordPress plugin before 2.3.1, PublishPress Capabilities Pro WordPress plugin before 2.3.1 does not have authorisation and CSRF checks when updating the plugin's settings via the init hook, and does not ensure that the options to be updated belong to the plugin. As a result, unauthenticated attackers could update arbitrary blog options, such as the default role and make any new registered user with an administrator role.

Detalhes CVE

Pontuacao CVSS v3.19.8

SeveridadeCRITICAL

Vetor CVSSCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Vetor de ataqueNETWORK

ComplexidadeLOW

Privilegios necessariosNONE

Interacao do usuarioNONE

Publicado1/10/2022

Ultima modificacao11/21/2024

Fontenvd

Avistamentos honeypot0

Produtos afetados

publishpress:capabilities

Fraquezas (CWE)

CWE-352CWE-862CWE-352CWE-862

Referencias

https://plugins.trac.wordpress.org/changeset/2640161(contact@wpscan.com)

https://wpscan.com/vulnerability/2f0f1a32-0c7a-48e6-8617-e0b2dcf62727(contact@wpscan.com)

https://plugins.trac.wordpress.org/changeset/2640161(af854a3a-2127-422b-91ae-364da2661108)

https://wpscan.com/vulnerability/2f0f1a32-0c7a-48e6-8617-e0b2dcf62727(af854a3a-2127-422b-91ae-364da2661108)

Correlacoes IOC

Sem correlacoes registradas

This product uses data from the NVD API but is not endorsed or certified by the NVD.