CVE-2021-24825

Common vulnerabilities & exposures (CVE)

CVE database CVE database blogpost Release & EoL database

Published at: - 07-03-2022 10:15

Last modified: - 12-04-2022 05:57

Total changes: - 4

Description

The Custom Content Shortcode WordPress plugin before 4.0.2 does not validate the data passed to its load shortcode, which could allow Contributor+ (v < 4.0.1) or Admin+ (v < 4.0.2) users to display arbitrary files from the filesystem (such as logs, .htaccess etc), as well as perform Local File Inclusion attacks as PHP files will be executed. Please note that such attack is still possible by admin+ in single site blogs by default (but won't be when either the unfiltered_html or file_edit is disallowed)

Common Vulnerability Scoring System (CVSS)

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Low

Attack complexity

Network

Attack vector

None

Availability

Low

Confidentiality

None

Integrity

Low

Privileges required

Unchanged

Scope

None

User interaction

4.3

Base score

2.8

1.4

Exploitability score

Impact score

Verification logic

vendor=custom_content_shortcode_project AND product=custom_content_shortcode AND target_software=wordpress AND versionEndExcluding=4.0.2

Reference

https://wpscan.com/vulnerability/be9d6f82-c972-459a-bacf-65b3dfb11a09

Keywords

CVE-2021-24825

Common vulnerabilities & exposures (CVE)

Description

Common Vulnerability Scoring System (CVSS)

Verification logic

Reference

NVD

CVE-2021-24825

CVE

Common vulnerabilities & exposures

CVSS

Common vulnerability scoring system

Security

Vulnerabilities

Exposures