Vulnerability Description
The Schreikasten WordPress plugin through 0.14.18 does not sanitise or escape the id GET parameter before using it in SQL statements in the comments dashboard from various actions, leading to authenticated SQL Injections which can be exploited by users as low as author
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Schreikasten Project | Schreikasten | <= 0.14.18 |
Related Weaknesses (CWE)
References
- https://codevigilant.com/disclosure/2021/wp-plugin-schreikasten/ExploitThird Party Advisory
- https://wpscan.com/vulnerability/a0787dae-a4b7-4248-9960-aaffabfaeb9fExploitThird Party Advisory
- https://codevigilant.com/disclosure/2021/wp-plugin-schreikasten/ExploitThird Party Advisory
- https://wpscan.com/vulnerability/a0787dae-a4b7-4248-9960-aaffabfaeb9fExploitThird Party Advisory
FAQ
What is CVE-2021-24630?
CVE-2021-24630 is a vulnerability with a CVSS score of 8.8 (HIGH). The Schreikasten WordPress plugin through 0.14.18 does not sanitise or escape the id GET parameter before using it in SQL statements in the comments dashboard from various actions, leading to authenti...
How severe is CVE-2021-24630?
CVE-2021-24630 has been rated HIGH with a CVSS base score of 8.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2021-24630?
Check the references section above for vendor advisories and patch information. Affected products include: Schreikasten Project Schreikasten.