Lucene search

[email protected]CVE-2021-24349

HistoryJun 14, 2021 - 2:15 p.m.

CVE-2021-24349

2021-06-1414:15:00

CWE-352

CWE-79

[email protected]

web.nvd.nist.gov

wordpress

plugin

image uploading

xss

security vulnerability

csrf

6.1 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.001 Low

EPSS

Percentile

32.4%

JSON

This Gallery from files WordPress plugin through 1.6.0 gives the functionality of uploading images to the server. But filenames are not properly sanitized before being output in an error message when they have an invalid extension, leading to a reflected Cross-Site Scripting issue. Due to the lack of CSRF check, the attack could also be performed via such vector.

CPENameOperatorVersion
gallery_from_files_project:gallery_from_filesgallery from files project gallery from filesle1.6.0

CPE	Name	Operator	Version
gallery_from_files_project:gallery_from_files	gallery from files project gallery from files	le	1.6.0

References

wpscan.com/vulnerability/6bb4eb71-d702-4732-b01f-b723077d66ca

Social References

6.1 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.001 Low

EPSS

Percentile

32.4%

JSON

Related for CVE-2021-24349

wpexploit1 prion1 cnvd1 wpvulndb1