CVE-2021-24365 Information

Description

The Admin Columns WordPress plugin Free before 4.3.2 and Pro before 5.5.2 allowed to configure individual columns for tables. Each column had a type. The type \Custom Field\ allowed to choose an arbitrary database column to display in the table. There was no escaping applied to the contents of \Custom Field\ columns.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

Reference

https://wpscan.com/vulnerability/fdbeb137-b404-46c7-85fb-394a3bdac388 https://www.syss.de/fileadmin/dokumente/Publikationen/Advisories/SYSS-2021-032.txt

Attack Complexity

LOW

Privileges Required

LOW

User Interaction Required

LOW

Scope

REQUIRED

Confidentiality Impact

CHANGED

Integrity Impact

LOW

Availability Impact

LOW

Base Score

NONE

Base Severity

5.4