CVE-2021-24960
WordPress File Upload < 4.16.3 - Contributor+ Stored Cross-Site Scripting via Malicious SVG
Severity Score
5.4
*CVSS v3.1
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
1
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
The WordPress File Upload WordPress plugin before 4.16.3, wordpress-file-upload-pro WordPress plugin before 4.16.3 allows users with a role as low as Contributor to configure the upload form in a way that allows uploading of SVG files, which could be then be used for Cross-Site Scripting attacks
El plugin WordPress File Upload de WordPress versiones anteriores a 4.16.3, el plugin wordpress-file-upload-pro de WordPress versiones anteriores a 4.16.3, permite a usuarios con un rol tan bajo como el de Contributor configurar el formulario de subida de una manera que permite subir archivos SVG, que podrĂan ser usados para ataques de tipo Cross-Site Scripting
*Credits:
apple502j
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2021-01-14 CVE Reserved
- 2022-02-14 CVE Published
- 2023-09-28 EPSS Updated
- 2024-08-03 CVE Updated
- 2024-08-03 First Exploit
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
- CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
- CWE-434: Unrestricted Upload of File with Dangerous Type
CAPEC
References (2)
| URL | Tag | Source |
|---|
| URL | Date | SRC |
|---|---|---|
| https://wpscan.com/vulnerability/18902832-2973-498d-808e-c75d1aedc11e | 2024-08-03 |
| URL | Date | SRC |
|---|---|---|
| https://plugins.trac.wordpress.org/changeset/2677722 | 2022-03-11 |
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Iptanus Search vendor "Iptanus" | Wordpress File Upload Search vendor "Iptanus" for product "Wordpress File Upload" | < 4.16.3 Search vendor "Iptanus" for product "Wordpress File Upload" and version " < 4.16.3" | wordpress |
Affected
| ||||||
| Iptanus Search vendor "Iptanus" | Wordpress File Upload Pro Search vendor "Iptanus" for product "Wordpress File Upload Pro" | < 4.16.3 Search vendor "Iptanus" for product "Wordpress File Upload Pro" and version " < 4.16.3" | wordpress |
Affected
| ||||||