The WP User Frontend WordPress plugin before 3.5.26 does not validate and escape the status parameter before using it in a SQL statement in the Subscribers dashboard, leading to an SQL injection. Due to the lack of sanitisation and escaping, this could also lead to Reflected Cross-Site Scripting
References
Link | Resource |
---|---|
http://packetstormsecurity.com/files/166071/WordPress-WP-User-Frontend-3.5.25-SQL-Injection.html | Exploit Third Party Advisory VDB Entry |
https://plugins.trac.wordpress.org/changeset/2648715 | Patch Third Party Advisory |
https://wpscan.com/vulnerability/6d3eeba6-5560-4380-a6e9-f008a9112ac6 | Exploit Third Party Advisory |
http://packetstormsecurity.com/files/166071/WordPress-WP-User-Frontend-3.5.25-SQL-Injection.html | Exploit Third Party Advisory VDB Entry |
https://plugins.trac.wordpress.org/changeset/2648715 | Patch Third Party Advisory |
https://wpscan.com/vulnerability/6d3eeba6-5560-4380-a6e9-f008a9112ac6 | Exploit Third Party Advisory |
Configurations
History
21 Nov 2024, 05:54
Type | Values Removed | Values Added |
---|---|---|
References | () http://packetstormsecurity.com/files/166071/WordPress-WP-User-Frontend-3.5.25-SQL-Injection.html - Exploit, Third Party Advisory, VDB Entry | |
References | () https://plugins.trac.wordpress.org/changeset/2648715 - Patch, Third Party Advisory | |
References | () https://wpscan.com/vulnerability/6d3eeba6-5560-4380-a6e9-f008a9112ac6 - Exploit, Third Party Advisory |
18 Mar 2022, 21:02
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : 6.5
v3 : 8.8 |
References | (MISC) http://packetstormsecurity.com/files/166071/WordPress-WP-User-Frontend-3.5.25-SQL-Injection.html - Exploit, Third Party Advisory, VDB Entry |
21 Feb 2022, 18:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
28 Jan 2022, 16:25
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:wedevs:wp_user_frontend:*:*:*:*:*:wordpress:*:* | |
References | (CONFIRM) https://plugins.trac.wordpress.org/changeset/2648715 - Patch, Third Party Advisory | |
References | (MISC) https://wpscan.com/vulnerability/6d3eeba6-5560-4380-a6e9-f008a9112ac6 - Exploit, Third Party Advisory | |
CVSS |
v2 : v3 : |
v2 : 7.5
v3 : 9.8 |
24 Jan 2022, 08:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-01-24 08:15
Updated : 2024-11-21 05:54
NVD link : CVE-2021-25076
Mitre link : CVE-2021-25076
CVE.ORG link : CVE-2021-25076
JSON object : View
Products Affected
wedevs
- wp_user_frontend
CWE
CWE-89
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')