CVE-2021-24988
Last modified
CVE-2021-24988 is a medium-severity vulnerability rated 5.4/10 on the CVSS scale. The WP RSS Aggregator WordPress plugin before 4.19.3 does not sanitise and escape data before outputting it in the System Info admin dashboard, which could lead to a Stored XSS issue due to the wprss_dismiss_addon_notice AJAX action missing authorisation and CSRF checks, allowing any authenticated users, such as subscriber to call it and set a malicious payload in the addon parameter.. EPSS estimates a 0.29% chance of exploitation in the next 30 days.
Description
The WP RSS Aggregator WordPress plugin before 4.19.3 does not sanitise and escape data before outputting it in the System Info admin dashboard, which could lead to a Stored XSS issue due to the wprss_dismiss_addon_notice AJAX action missing authorisation and CSRF checks, allowing any authenticated users, such as subscriber to call it and set a malicious payload in the addon parameter.
Metrics
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Wprssaggregator | Wp Rss Aggregator | < 4.19.3 |
References
- https://wpscan.com/vulnerability/0742483b-6314-451b-a63a-536fd1e14845Exploit, Third Party Advisory
- https://wpscan.com/vulnerability/0742483b-6314-451b-a63a-536fd1e14845Exploit, Third Party Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2021-24988?
How severe is CVE-2021-24988?
How do I fix CVE-2021-24988?
Are you affected by CVE-2021-24988?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST