Lucene search
Copyright (C) 2023 Greenbone AGOPENVAS:1361412562310126069HistoryApr 12, 2023 - 12:00 a.m.
WordPress Starter Templates Plugin < 1.2.17 PHP Object Injection Vulnerability
2023-04-1200:00:00
Copyright (C) 2023 Greenbone AG
plugins.openvas.org
4
wordpress
plugin
vulnerability
object injection
unserialised content
update to version 1.2.17
8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
8.8 High
AI Score
Confidence
High
0.002 Low
EPSS
Percentile
58.6%
The WordPress plugin
# SPDX-FileCopyrightText: 2023 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only
CPE = "cpe:/a:kadencewp:starter_templates";
if(description)
{
script_oid("1.3.6.1.4.1.25623.1.0.126069");
script_version("2023-10-13T16:09:03+0000");
script_tag(name:"last_modification", value:"2023-10-13 16:09:03 +0000 (Fri, 13 Oct 2023)");
script_tag(name:"creation_date", value:"2023-04-12 09:16:00 +0000 (Wed, 12 Apr 2023)");
script_tag(name:"cvss_base", value:"10.0");
script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:C/I:C/A:C");
script_tag(name:"severity_vector", value:"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H");
script_tag(name:"severity_origin", value:"NVD");
script_tag(name:"severity_date", value:"2023-01-13 06:48:00 +0000 (Fri, 13 Jan 2023)");
script_cve_id("CVE-2022-3679");
script_tag(name:"qod_type", value:"remote_banner");
script_tag(name:"solution_type", value:"VendorFix");
script_name("WordPress Starter Templates Plugin < 1.2.17 PHP Object Injection Vulnerability");
script_category(ACT_GATHER_INFO);
script_copyright("Copyright (C) 2023 Greenbone AG");
script_family("Web application abuses");
script_dependencies("gb_wordpress_plugin_http_detect.nasl");
script_mandatory_keys("wordpress/plugin/kadence-starter-templates/detected");
script_tag(name:"summary", value:"The WordPress plugin 'Starter Templates' is prone to an PHP
object injection vulnerability.");
script_tag(name:"vuldetect", value:"Checks if a vulnerable version is present on the target host.");
script_tag(name:"insight", value:"The plugin unserialises the content of an imported file, which
could lead to PHP object injection issues when an admin import a malicious file and a suitable
gadget chain is present on the blog.");
script_tag(name:"affected", value:"WordPress Starter Templates plugin versions prior to 1.2.17.");
script_tag(name:"solution", value:"Update to version 1.2.17 or later.");
script_xref(name:"URL", value:"https://wpscan.com/vulnerability/ec4b9bf7-71d6-4528-9dd1-cc7779624760");
exit(0);
}
include("host_details.inc");
include("version_func.inc");
if (!port = get_app_port(cpe: CPE))
exit(0);
if (!infos = get_app_version_and_location(cpe: CPE, port: port, exit_no_version: TRUE))
exit(0);
version = infos["version"];
location = infos["location"];
if (version_is_less(version: version, test_version: "1.2.17")) {
report = report_fixed_ver(installed_version: version, fixed_version: "1.2.17", install_path: location);
security_message(port: port, data: report);
exit(0);
}
exit(99);
Related
prion
prion
Design/Logic Flaw
2023-01-09 23:15:00
wpvulndb
wpvulndb
Starter Templates by Kadence WP < 1.2.17 - Admin+ PHP Object Injection
2022-12-16 00:00:00
wpexploit
wpexploit
Starter Templates by Kadence WP < 1.2.17 - Admin+ PHP Object Injection
2022-12-16 00:00:00
cve
cve
CVE-2022-3679
2023-01-09 23:15:26
cvelist
cvelist
nvd
nvd
CVE-2022-3679
2023-01-09 23:15:26
8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
8.8 High
AI Score
Confidence
High
0.002 Low
EPSS
Percentile
58.6%
Related for OPENVAS:1361412562310126069