| Reporter | Title | Published | Views | Family All 14 |
|---|---|---|---|---|
| CVE-2021-25074 | 24 Jan 202212:17 | – | circl | |
| WordPress plugin 输入验证错误漏洞 | 24 Jan 202200:00 | – | cnnvd | |
| WordPress WebP Converter for Media plugin input validation error vulnerability | 26 Jan 202200:00 | – | cnvd | |
| CVE-2021-25074 | 24 Jan 202208:01 | – | cve | |
| CVE-2021-25074 WebP Converter for Media < 4.0.3 - Unauthenticated Open redirect | 24 Jan 202208:01 | – | cvelist | |
| EUVD-2021-11986 | 7 Oct 202500:30 | – | euvd | |
| CVE-2021-25074 | 24 Jan 202208:15 | – | nvd | |
| WordPress WebP Converter for Media Plugin < 4.0.3 Open Redirect Vulnerability | 26 Jan 202200:00 | – | openvas | |
| CVE-2021-25074 | 24 Jan 202208:15 | – | osv | |
| WordPress WebP Converter for Media plugin <= 4.0.2 - Unauthenticated Open redirect vulnerability | 27 Dec 202100:00 | – | patchstack |
id: CVE-2021-25074
info:
name: WordPress WebP Converter for Media < 4.0.3 - Unauthenticated Open Redirect
author: dhiyaneshDk
severity: medium
description: WordPress WebP Converter for Media < 4.0.3 contains a file (passthru.php) which does not validate the src parameter before redirecting the user to it, leading to an open redirect issue.
impact: |
An attacker can trick users into visiting a malicious website, leading to potential phishing attacks or the disclosure of sensitive information.
remediation: |
Update to the latest version of the WordPress WebP Converter for Media plugin (4.0.3) or remove the plugin if not needed.
reference:
- https://wpscan.com/vulnerability/f3c0a155-9563-4533-97d4-03b9bac83164
- https://nvd.nist.gov/vuln/detail/CVE-2021-25074
- https://github.com/ARPSyndicate/kenzer-templates
- https://github.com/ARPSyndicate/cvemon
classification:
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
cvss-score: 6.1
cve-id: CVE-2021-25074
cwe-id: CWE-601
epss-score: 0.02505
epss-percentile: 0.82813
cpe: cpe:2.3:a:webp_converter_for_media_project:webp_converter_for_media:*:*:*:*:*:wordpress:*:*
metadata:
max-request: 1
vendor: webp_converter_for_media_project
product: webp_converter_for_media
framework: wordpress
tags: cve2021,cve,redirect,wp-plugin,webpconverter,wpscan,wordpress,webp_converter_for_media_project,vuln
http:
- method: GET
path:
- "{{BaseURL}}/wp-content/plugins/webp-converter-for-media/includes/passthru.php?src=https://interact.sh"
matchers:
- type: regex
part: header
regex:
- '(?m)^(?:Location\s*?:\s*?)(?:https?:\/\/|\/\/|\/\\\\|\/\\)(?:[a-zA-Z0-9\-_\.@]*)interact\.sh\/?(\/|[^.].*)?$' # https://regex101.com/r/L403F0/1
# digest: 4b0a00483046022100dd8751ba55c6a92ee4796ff3d4cc4b80c843fb3299fb1cbdec4fa682858489dc022100c30db6e575300d25c9a3b4c5bec5b7793e858ba5d61b632357a9f4b7c0563fee:922c64590222798bb761d5b6d8e72950Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation