CVE-2021-24620
Last modified
CVE-2021-24620 is a high-severity vulnerability rated 8.8/10 on the CVSS scale. The WordPress Simple Ecommerce Shopping Cart Plugin- Sell products through Paypal plugin through 2.2.5 does not check for the uploaded Downloadable Digital product file, allowing any file, such as PHP to be uploaded by an administrator. Furthermore, as there is no CSRF in place, attackers could also make a logged admin upload a malicious PHP file, which would lead to RCE. EPSS estimates a 0.61% chance of exploitation in the next 30 days.
Description
The WordPress Simple Ecommerce Shopping Cart Plugin- Sell products through Paypal plugin through 2.2.5 does not check for the uploaded Downloadable Digital product file, allowing any file, such as PHP to be uploaded by an administrator. Furthermore, as there is no CSRF in place, attackers could also make a logged admin upload a malicious PHP file, which would lead to RCE
Metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Simple-E-Commerce-Shopping-Cart Project | Simple-E-Commerce-Shopping-Cart | <= 2.2.5 |
References
- https://wpscan.com/vulnerability/1f2b3c4a-f7e9-4d22-b71e-f6b051fd8349Exploit, Third Party Advisory
- https://wpscan.com/vulnerability/1f2b3c4a-f7e9-4d22-b71e-f6b051fd8349Exploit, Third Party Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2021-24620?
How severe is CVE-2021-24620?
How do I fix CVE-2021-24620?
Are you affected by CVE-2021-24620?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST