Lucene search
WPScanCVELIST:CVE-2021-24820HistoryFeb 28, 2022 - 9:06 a.m.
CVE-2021-24820 Cost Calculator <= 1.6 - Authenticated Local File Inclusion
2022-02-2809:06:10
CWE-22
WPScan
www.cve.org
4
cost calculator
authenticated users
path traversal
local file inclusion
windows web servers
EPSS
0.001
Percentile
40.2%
The Cost Calculator WordPress plugin through 1.6 allows authenticated users (Contributor+ in versions < 1.5, and Admin+ in versions <= 1.6) to perform path traversal and local PHP file inclusion on Windows Web Servers via the Cost Calculator post’s Layout
CNA Affected
[
{
"product": "Cost Calculator",
"vendor": "Unknown",
"versions": [
{
"lessThanOrEqual": "1.6",
"status": "affected",
"version": "1.6",
"versionType": "custom"
}
]
}
]Related
cnvd
cnvd
WordPress Cost Calculator plugin path traversal vulnerability
2022-03-02 00:00:00
patchstack
patchstack
wpexploit
wpexploit
Cost Calculator <= 1.4 - Contributor+ Local File Inclusion
2021-11-03 00:00:00
Cost Calculator <= 1.8 - Authenticated Local File Inclusion
2022-02-01 00:00:00
prion
prion
Path traversal
2022-02-28 09:15:00
nvd
nvd
CVE-2021-24820
2022-02-28 09:15:07
wpvulndb
wpvulndb
Cost Calculator <= 1.4 - Contributor+ Local File Inclusion
2021-11-03 00:00:00
Cost Calculator <= 1.8 - Authenticated Local File Inclusion
2022-02-01 00:00:00
cve
cve
CVE-2021-24820
2022-02-28 09:15:07