CVE-2021-25075

moderate-risk
Published 2022-02-21

The Duplicate Page or Post WordPress plugin before 1.5.1 does not have any authorisation and has a flawed CSRF check in the wpdevart_duplicate_post_parametrs_save_in_db AJAX action, allowing any authenticated users, such as subscriber to call it and change the plugin's settings, or perform such attack via CSRF. Furthermore, due to the lack of escaping, this could lead to Stored Cross-Site Scripting issues

Do I need to act?

!
12.5% chance of exploitation in next 30 days
EPSS score — higher than 88% of all CVEs
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
3
CVSS 3.5/10 Low
NETWORK / LOW complexity

Affected Products (1)

Affected Vendors

Wpdevart

References (2)

Exploit https://wpscan.com/vulnerability/db5a0431-af4d-45b7-be4e-36b6c90a601b
Exploit https://wpscan.com/vulnerability/db5a0431-af4d-45b7-be4e-36b6c90a601b
33
/ 100
moderate-risk
Severity 16/34 · Moderate
Exploitability 12/34 · Low
Exposure 5/34 · Minimal