Vulnerability Description
The uListing plugin for WordPress is vulnerable to authorization bypass due to a missing capability check in the "ulisting/includes/route.php" file on the /1/api/ulisting-user/search REST-API route in versions up to, and including, 1.6.6. This makes it possible for unauthenticated attackers to retrieve the list of all users and their email address in the database.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Stylemixthemes | Ulisting | <= 1.6.6 |
Related Weaknesses (CWE)
References
- https://blog.nintechnet.com/wordpress-ulisting-plugin-fixed-multiple-critical-vuExploit
- https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&oldRelease Notes
- https://www.wordfence.com/threat-intel/vulnerabilities/id/0a6615fd-7c37-45d9-a65Third Party Advisory
- https://blog.nintechnet.com/wordpress-ulisting-plugin-fixed-multiple-critical-vuExploit
- https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&oldRelease Notes
- https://www.wordfence.com/threat-intel/vulnerabilities/id/0a6615fd-7c37-45d9-a65Third Party Advisory
FAQ
What is CVE-2021-4339?
CVE-2021-4339 is a vulnerability with a CVSS score of 7.5 (HIGH). The uListing plugin for WordPress is vulnerable to authorization bypass due to a missing capability check in the "ulisting/includes/route.php" file on the /1/api/ulisting-user/search REST-API route in...
How severe is CVE-2021-4339?
CVE-2021-4339 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2021-4339?
Check the references section above for vendor advisories and patch information. Affected products include: Stylemixthemes Ulisting.