CVE-2021-24509
Last modified
CVE-2021-24509 is a medium-severity vulnerability rated 5.4/10 on the CVSS scale. The Page View Count WordPress plugin before 2.4.9 does not escape the postid parameter of pvc_stats shortcode, allowing users with a role as low as Contributor to perform Stored XSS attacks. A post made by a contributor would still have to be approved by an admin to have the XSS triggered in the frontend, however, higher privilege users, such as editor could exploit this without the need of approval, and even when the blog disallows the unfiltered_html capability.. EPSS estimates a 0.62% chance of exploitation in the next 30 days.
Description
The Page View Count WordPress plugin before 2.4.9 does not escape the postid parameter of pvc_stats shortcode, allowing users with a role as low as Contributor to perform Stored XSS attacks. A post made by a contributor would still have to be approved by an admin to have the XSS triggered in the frontend, however, higher privilege users, such as editor could exploit this without the need of approval, and even when the blog disallows the unfiltered_html capability.
Metrics
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| A3rev | Page View Count | < 2.4.9 |
References
- https://wpscan.com/vulnerability/06df2729-21da-4c22-ae1e-dda1f15bdf8fExploit, Third Party Advisory
- https://wpscan.com/vulnerability/06df2729-21da-4c22-ae1e-dda1f15bdf8fExploit, Third Party Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2021-24509?
How severe is CVE-2021-24509?
How do I fix CVE-2021-24509?
Are you affected by CVE-2021-24509?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST