CVE-2021-24490 Information

Description

The Email Artillery (MASS EMAIL) WordPress plugin through 4.1 does not properly check the uploaded files from the Import Emails feature allowing arbitrary files to be uploaded. Furthermore the plugin is also lacking any CSRF check allowing such issue to be exploited via a CSRF attack as well. However due to the presence of a .htaccess denying access to everything in the folder the file is uploaded to the malicious uploaded file will only be accessible on Web Servers such as Nginx/IIS

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H

Reference

https://wpscan.com/vulnerability/4ea0127e-afef-41bf-a005-c57432f9f58c

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction Required

HIGH

Scope

REQUIRED

Confidentiality Impact

UNCHANGED

Integrity Impact

HIGH

Availability Impact

HIGH

Base Score

HIGH

Base Severity

6.8