Lucene search

[email protected]CVE-2021-24209

HistoryApr 05, 2021 - 7:15 p.m.

CVE-2021-24209

2021-04-0519:15:17

CWE-94

[email protected]

web.nvd.nist.gov

cve-2021-24209

wordpress

plugin

rce

input validation

cache location

web shell injection

7.2 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

6.9 Medium

AI Score

Confidence

High

9 High

CVSS2

Access Vector

Access Complexity

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:S/C:C/I:C/A:C

0.001 Low

EPSS

Percentile

40.7%

JSON

The WP Super Cache WordPress plugin before 1.7.2 was affected by an authenticated (admin+) RCE in the settings page due to input validation failure and weak $cache_path check in the WP Super Cache Settings -> Cache Location option. Direct access to the wp-cache-config.php file is not prohibited, so this vulnerability can be exploited for a web shell injection.

Affected configurations

Vulners

NVD

Node

automatticwp_super_cacheRange<1.7.2

VendorProductVersionCPE
automatticwp_super_cache*cpe:2.3:a:automattic:wp_super_cache:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
automattic	wp_super_cache	*	cpe:2.3:a:automattic:wp_super_cache::::::::

CNA Affected

[
  {
    "vendor": "Unknown",
    "product": "WP Super Cache",
    "versions": [
      {
        "status": "affected",
        "versionType": "custom",
        "version": "0",
        "lessThan": "1.7.2"
      }
    ],
    "defaultStatus": "unaffected",
    "collectionURL": "https://wordpress.org/plugins"
  }
]