CVE-2021-24792

moderate-risk
Published 2021-12-13

The Shiny Buttons WordPress plugin through 1.1.0 does not have any authorisation and CSRF in place when saving a template (wpbtn_save_template function hooked to the init action), nor sanitise and escape them before outputting them in the admin dashboard, which allow unauthenticated users to add a malicious template and lead to Stored Cross-Site Scripting issues.

Do I need to act?

!
12.1% chance of exploitation in next 30 days
EPSS score — higher than 88% of all CVEs
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
6
CVSS 6.1/10 Medium
NETWORK / LOW complexity

Affected Products (1)

Affected Vendors

Wpeden

References (2)

Exploit https://wpscan.com/vulnerability/29514d8e-9d1c-4fb6-b378-f6b7374989ca
Exploit https://wpscan.com/vulnerability/29514d8e-9d1c-4fb6-b378-f6b7374989ca
40
/ 100
moderate-risk
Severity 23/34 · High
Exploitability 12/34 · Low
Exposure 5/34 · Minimal