The WP Survey Plus WordPress plugin through 1.0 does not have any authorisation and CSRF checks in place in its AJAX actions, allowing any user to call them and add/edit/delete Surveys. Furthermore, due to the lack of sanitization in the Surveys' Title, this could also lead to Stored Cross-Site Scripting issues
References
Link | Resource |
---|---|
https://wpscan.com/vulnerability/78405609-2105-4011-b18e-1ba5f438972d | Exploit Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: WPScan
Published: 2021-11-08T17:35:23
Updated: 2021-11-08T17:35:23
Reserved: 2021-01-14T00:00:00
Link: CVE-2021-24801
JSON object: View
NVD Information
Status : Analyzed
Published: 2021-11-08T18:15:09.970
Modified: 2022-07-30T12:11:30.467
Link: CVE-2021-24801
JSON object: View
Redhat Information
No data.