WordfenceCVE-2021-4339CVE-2021-4339
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
AI Score
Confidence
High
EPSS
Percentile
48.7%
The uListing plugin for WordPress is vulnerable to authorization bypass due to a missing capability check in the “ulisting/includes/route.php” file on the /1/api/ulisting-user/search REST-API route in versions up to, and including, 1.6.6. This makes it possible for unauthenticated attackers to retrieve the list of all users and their email address in the database.
Affected configurations
| Vendor | Product | Version | CPE |
|---|---|---|---|
| stylemixthemes | ulisting | * | cpe:2.3:a:stylemixthemes:ulisting:*:*:*:*:*:wordpress:*:* |
CNA Affected
[
{
"vendor": "stylemix",
"product": "Directory Listings WordPress plugin – uListing",
"versions": [
{
"version": "*",
"status": "affected",
"lessThan": "1.7",
"versionType": "semver"
}
],
"defaultStatus": "unaffected"
}
]References
blog.nintechnet.com/wordpress-ulisting-plugin-fixed-multiple-critical-vulnerabilities/
plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&old=2456786%40ulisting&new=2456786%40ulisting&sfp_email=&sfph_mail=
www.wordfence.com/threat-intel/vulnerabilities/id/0a6615fd-7c37-45d9-a657-0ba00df840e5?source=cve
Related
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
AI Score
Confidence
High
EPSS
Percentile
48.7%