CVE-2021-24242 - OpenCVE

The Tutor LMS – eLearning and online course solution WordPress plugin before 1.8.8 is affected by a local file inclusion vulnerability through the maliciously constructed sub_page parameter of the plugin's Tools, allowing high privilege users to include any local php file

Attack Vector Network

Attack Complexity Low

Privileges Required High

Scope Unchanged

Confidentiality Impact Low

Integrity Impact Low

Availability Impact None

User Interaction None

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication Single

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact None

AV:N/AC:L/Au:S/C:P/I:P/A:N

Vendors & Products
CPE Configurations

Vendors	Products
Themeum	Tutor Lms

Configuration 1 [-]

cpe:2.3:a:themeum:tutor_lms:*:*:*:*:*:wordpress:*:*

References

Link	Resource
https://wpscan.com/vulnerability/20f3e63a-31d8-49a0-b4ef-209749feff5c	Exploit Third Party Advisory

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: WPScan

Published: 2021-04-22T21:00:51

Updated: 2021-04-22T21:00:51

Reserved: 2021-01-14T00:00:00

Link: CVE-2021-24242

JSON object: View

NVD Information

Status : Modified

Published: 2021-04-22T21:15:09.927

Modified: 2023-11-07T03:31:08.670

Link: CVE-2021-24242

JSON object: View

Redhat Information

No data.

CWE

CWE-22

{"containers": {"cna": {"affected": [{"product": "Tutor LMS \u2013 eLearning and online course solution", "vendor": "Themeum", "versions": [{"lessThan": "1.8.8", "status": "affected", "version": "1.8.8", "versionType": "custom"}]}], "credits": [{"lang": "en", "value": "sasa"}], "descriptions": [{"lang": "en", "value": "The Tutor LMS \u2013 eLearning and online course solution WordPress plugin before 1.8.8 is affected by a local file inclusion vulnerability through the maliciously constructed sub_page parameter of the plugin's Tools, allowing high privilege users to include any local php file"}], "problemTypes": [{"descriptions": [{"cweId": "CWE-22", "description": "CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"dateUpdated": "2021-04-22T21:00:51", "orgId": "1bfdd5d7-9bf6-4a53-96ea-42e2716d7a81", "shortName": "WPScan"}, "references": [{"tags": ["x_refsource_CONFIRM"], "url": "https://wpscan.com/vulnerability/20f3e63a-31d8-49a0-b4ef-209749feff5c"}], "source": {"discovery": "UNKNOWN"}, "title": "Tutor LMS < 1.8.8 - Authenticated Local File Inclusion", "x_generator": "WPScan CVE Generator", "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "contact@wpscan.com", "ID": "CVE-2021-24242", "STATE": "PUBLIC", "TITLE": "Tutor LMS < 1.8.8 - Authenticated Local File Inclusion"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "Tutor LMS \u2013 eLearning and online course solution", "version": {"version_data": [{"version_affected": "<", "version_name": "1.8.8", "version_value": "1.8.8"}]}}]}, "vendor_name": "Themeum"}]}}, "credit": [{"lang": "eng", "value": "sasa"}], "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "The Tutor LMS \u2013 eLearning and online course solution WordPress plugin before 1.8.8 is affected by a local file inclusion vulnerability through the maliciously constructed sub_page parameter of the plugin's Tools, allowing high privilege users to include any local php file"}]}, "generator": "WPScan CVE Generator", "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')"}]}]}, "references": {"reference_data": [{"name": "https://wpscan.com/vulnerability/20f3e63a-31d8-49a0-b4ef-209749feff5c", "refsource": "CONFIRM", "url": "https://wpscan.com/vulnerability/20f3e63a-31d8-49a0-b4ef-209749feff5c"}]}, "source": {"discovery": "UNKNOWN"}}}}, "cveMetadata": {"assignerOrgId": "1bfdd5d7-9bf6-4a53-96ea-42e2716d7a81", "assignerShortName": "WPScan", "cveId": "CVE-2021-24242", "datePublished": "2021-04-22T21:00:51", "dateReserved": "2021-01-14T00:00:00", "dateUpdated": "2021-04-22T21:00:51", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:themeum:tutor_lms:*:*:*:*:*:wordpress:*:*", "matchCriteriaId": "50887858-D50A-44CD-A4A9-758F8C439568", "versionEndExcluding": "1.8.8", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "The Tutor LMS \u2013 eLearning and online course solution WordPress plugin before 1.8.8 is affected by a local file inclusion vulnerability through the maliciously constructed sub_page parameter of the plugin's Tools, allowing high privilege users to include any local php file"}, {"lang": "es", "value": "El plugin de WordPress Tutor LMS - eLearning and online course solution versiones anteriores a 1.8.8 est\u00e1 afectado por una vulnerabilidad de inclusi\u00f3n de archivos locales por medio del par\u00e1metro sub_page construido maliciosamente de las herramientas del plugin, permitiendo a usuarios con altos privilegios incluir cualquier archivo php local"}], "id": "CVE-2021-24242", "lastModified": "2023-11-07T03:31:08.670", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "NONE", "baseScore": 5.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 8.0, "impactScore": 4.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 3.8, "baseSeverity": "LOW", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "HIGH", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:N", "version": "3.1"}, "exploitabilityScore": 1.2, "impactScore": 2.5, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2021-04-22T21:15:09.927", "references": [{"source": "contact@wpscan.com", "tags": ["Exploit", "Third Party Advisory"], "url": "https://wpscan.com/vulnerability/20f3e63a-31d8-49a0-b4ef-209749feff5c"}], "sourceIdentifier": "contact@wpscan.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-22"}], "source": "contact@wpscan.com", "type": "Primary"}]}