CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 1CVE-2021-24859 – User Meta Shortcodes <= 0.5 - Contributor+ Unauthorized Arbitrary User Metadata Access
https://notcve.org/view.php?id=CVE-2021-24859
The User Meta Shortcodes WordPress plugin through 0.5 registers a shortcode that allows any user with a role as low as contributor to access other users metadata by specifying the user login as a parameter. This makes the WP instance vulnerable to data extrafiltration, including password hashes El plugin User Meta Shortcodes de WordPress versiones hasta 0.5, registra un shortcode que permite a cualquier usuario con un rol tan bajo como el de colaborador acceder a los metadatos de otros usuarios al especificar el nombre de usuario como parámetro. Esto hace que la instancia de WP sea vulnerable a una extra filtración de datos, incluyendo los hashes de las contraseñas • https://wpscan.com/vulnerability/958f44a5-07e7-4349-9212-2a039a082ba0 • CWE-284: Improper Access Control •
CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 1CVE-2021-24611 – Keywords & Meta <= 3.0 - CSRF to Stored Cross-Site Scripting (XSS)
https://notcve.org/view.php?id=CVE-2021-24611
The Keyword Meta WordPress plugin through 3.0 does not sanitise of escape its settings before outputting them back in the page after they are saved, allowing for Cross-Site Scripting issues. Furthermore, it is also lacking any CSRF check, allowing attacker to make a logged in high privilege user save arbitrary setting via a CSRF attack. El plugin Keyword Meta WordPress versiones hasta 3.0, no sanea ni escapa sus ajustes antes de devolverlos a la página después de ser guardados, permitiendo problemas de tipo Cross-Site Scripting. Además, también carece de cualquier comprobación de tipo CSRF, que permite a un atacante hacer que un usuario con privilegios elevados guarde una configuración arbitraria por medio de un ataque CSRF. • https://wpscan.com/vulnerability/b4a2e595-6971-4a2a-a346-ac4445a5e0cd • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') CWE-352: Cross-Site Request Forgery (CSRF) •
CVSS: 7.2EPSS: 0%CPEs: 1EXPL: 1CVE-2021-24451 – Export Users With Meta < 0.6.5 - Authenticated SQL Injection
https://notcve.org/view.php?id=CVE-2021-24451
The Export Users With Meta WordPress plugin before 0.6.5 did not escape the list of roles to export before using them in a SQL statement in the export functionality, available to admins, leading to an authenticated SQL Injection. El plugin Export Users With Meta WordPress versiones anteriores a 0.6.5, no escapa de la lista de roles a exportar antes de usarlos en una sentencia SQL en la funcionalidad export, disponible para los administradores, conllevando a una inyección SQL autenticada • https://wpscan.com/vulnerability/40603382-404b-44a2-8212-f2008366891c • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 5.4EPSS: 0%CPEs: 1EXPL: 1CVE-2020-27356 – Debug Meta Data <= 1.1.2 - Stored Cross-Site Scripting
https://notcve.org/view.php?id=CVE-2020-27356
The debug-meta-data plugin 1.1.2 for WordPress allows XSS. El plugin debug-meta-data versión 1.1.2 para WordPress, permite un ataque de tipo XSS The Debug Meta Data plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to, and including, 1.1.2 due to insufficient input sanitization and output escaping on the a user's user-agent HTTP header value. This makes it possible for authenticated attackers to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. • https://github.com/ahmadawais/debug-meta-data/blob/master/changelog.md https://github.com/mandiant/Vulnerability-Disclosures/blob/master/MNDT-2021-0009/MNDT-2021-0009.md https://wordpress.org/plugins/debug-meta-data/#developers • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 3.5EPSS: 0%CPEs: 8EXPL: 0CVE-2014-9362
https://notcve.org/view.php?id=CVE-2014-9362
Cross-site scripting (XSS) vulnerability in the path-based meta tag editing form in the Meta tags quick module 7.x-2.x before 7.x-2.8 for Drupal allows remote authenticated users with the "Edit path based meta tags" permission to inject arbitrary web script or HTML via vectors related to deleting a Path-based Metatag. Vulnerabilidad de XSS en el formulario para editar metaetiquetas basadas en rutas en el módulo Meta tags quick 7.x-2.x anterior a 7.x-2.8 para Drupal permite a usuarios remotos autenticados con el permiso 'editar metaetiquetas basadas en rutas' inyectar secuencias de comandos web o HTML arbitrarios a través de vectores relacionados con la eliminación de una metaetiqueta basad en rutas. • https://www.drupal.org/node/2295975 https://www.drupal.org/node/2296511 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •