The bt_bb_get_grid AJAX action of the Bold Page Builder WordPress plugin before 3.1.6 passes user input into the unserialize() function without any validation or sanitisation, which could lead to a PHP Object Injection. Even though the plugin did not contain a suitable gadget to fully exploit the issue, other installed plugins on the blog could allow such issue to be exploited and lead to RCE in some cases.
References
Link | Resource |
---|---|
https://wpscan.com/vulnerability/08edce3f-2746-4886-8439-76e44ec76fa8 | Exploit Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: WPScan
Published: 2021-08-30T14:11:21
Updated: 2021-08-30T14:11:21
Reserved: 2021-01-14T00:00:00
Link: CVE-2021-24579
JSON object: View
NVD Information
Status : Analyzed
Published: 2021-08-30T15:15:07.557
Modified: 2021-09-02T15:26:05.390
Link: CVE-2021-24579
JSON object: View
Redhat Information
No data.
CWE