CVE-2021-24340

high-risk
Published 2021-06-07

The WP Statistics WordPress plugin before 13.0.8 relied on using the WordPress esc_sql() function on a field not delimited by quotes and did not first prepare the query. Additionally, the page, which should have been accessible to administrator only, was also available to any visitor, including unauthenticated ones.

Do I need to act?

!
83.2% chance of exploitation in next 30 days
EPSS score — higher than 17% of all CVEs
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
7
CVSS 7.5/10 High
NETWORK / LOW complexity

Affected Products (1)

Affected Vendors

Veronalabs

References (4)

Exploit https://wpscan.com/vulnerability/d2970cfb-0aa9-4516-9a4b-32971f41a19c
Exploit https://www.wordfence.com/blog/2021/05/over-600000-sites-impacted-by-wp-statisti...
Exploit https://wpscan.com/vulnerability/d2970cfb-0aa9-4516-9a4b-32971f41a19c
Exploit https://www.wordfence.com/blog/2021/05/over-600000-sites-impacted-by-wp-statisti...
51
/ 100
high-risk
Severity 26/34 · High
Exploitability 20/34 · Moderate
Exposure 5/34 · Minimal