CVE-2021-24500

Published: Aug 9, 2021Modified: Nov 21, 2024

8.1

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H

Exploitability: 2.8 / Impact: 5.2

Source: NVD

Description

Several AJAX actions available in the Workreap WordPress theme before 2.2.2 lacked CSRF protections, as well as allowing insecure direct object references that were not validated. This allows an attacker to trick a logged in user to submit a POST request to the vulnerable site, potentially modifying or deleting arbitrary objects on the target site.

Affected (1)

Products: Amentotech: Workreap

1 product

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Amentotech Workreap	Before 2.2.2

Related CWEs

Unverified Ownership

The product does not properly verify that a critical resource is owned by the proper entity.

Improper Access Control

The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.

Cross-Site Request Forgery (CSRF)

The web application does not, or can not, sufficiently verify whether a well-formed, valid, consistent request was intentionally provided by the user who submitted the request.

Missing Authorization

The product does not perform an authorization check when an actor attempts to access a resource or perform an action.

References (4)

https://jetpack.com/2021/07/07/multiple-vulnerabilities-in-workreap-theme/

Source: contact@wpscan.com

ExploitThird Party Advisory

https://wpscan.com/vulnerability/0c4b5ecc-54d0-45ec-9f92-b2ca3cadbe56

Source: contact@wpscan.com

ExploitThird Party Advisory

https://jetpack.com/2021/07/07/multiple-vulnerabilities-in-workreap-theme/

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitThird Party Advisory

https://wpscan.com/vulnerability/0c4b5ecc-54d0-45ec-9f92-b2ca3cadbe56

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitThird Party Advisory

Timeline

No history available yet.