Vulnerability Description
The Timetable and Event Schedule WordPress plugin before 2.4.0 outputs the Hashed Password, Username and Email Address (along other less sensitive data) of the user related to the Even Head of the Timeslot in the response when requesting the event Timeslot data with a user with the edit_posts capability. Combined with the other Unauthorised Event Timeslot Modification issue (https://wpscan.com/reports/submissions/4699/) where an arbitrary user ID can be set, this could allow low privilege users with the edit_posts capability (such as author) to retrieve sensitive User data by iterating over the user_id
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Motopress | Timetable And Event Schedule | < 2.4.0 |
Related Weaknesses (CWE)
References
- https://wpscan.com/vulnerability/cd288a92-903b-47c9-83ac-8e5b677e949bExploitThird Party Advisory
- https://wpscan.com/vulnerability/cd288a92-903b-47c9-83ac-8e5b677e949bExploitThird Party Advisory
FAQ
What is CVE-2021-24585?
CVE-2021-24585 is a vulnerability with a CVSS score of 6.5 (MEDIUM). The Timetable and Event Schedule WordPress plugin before 2.4.0 outputs the Hashed Password, Username and Email Address (along other less sensitive data) of the user related to the Even Head of the Tim...
How severe is CVE-2021-24585?
CVE-2021-24585 has been rated MEDIUM with a CVSS base score of 6.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2021-24585?
Check the references section above for vendor advisories and patch information. Affected products include: Motopress Timetable And Event Schedule.