CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
  Take a third party risk management course for FREE
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Security Vulnerabilities Published In November 2021

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
1001 CVE-2021-25878 79 XSS 2021-11-01 2021-11-08
4.3
None Remote Medium Not required None Partial None
AVideo/YouPHPTube 10.0 and prior is affected by multiple reflected Cross Script Scripting vulnerabilities via the videoName parameter which allows a remote attacker to steal administrators' session cookies or perform actions as an administrator.
1002 CVE-2021-25877 732 2021-11-01 2021-11-08
9.0
None Remote Low ??? Complete Complete Complete
AVideo/YouPHPTube 10.0 and prior is affected by Insecure file write. An administrator privileged user is able to write files on filesystem using flag and code variables in file save.php.
1003 CVE-2021-25876 79 XSS 2021-11-01 2021-11-08
4.3
None Remote Medium Not required None Partial None
AVideo/YouPHPTube 10.0 and prior has multiple reflected Cross Script Scripting vulnerabilities via the u parameter which allows a remote attacker to steal administrators' session cookies or perform actions as an administrator.
1004 CVE-2021-25875 79 XSS 2021-11-01 2021-11-08
4.3
None Remote Medium Not required None Partial None
AVideo/YouPHPTube AVideo/YouPHPTube 10.0 and prior has multiple reflected Cross Script Scripting vulnerabilities via the searchPhrase parameter which allows a remote attacker to steal administrators' session cookies or perform actions as an administrator.
1005 CVE-2021-25874 89 Sql 2021-11-01 2021-11-08
5.0
None Remote Low Not required Partial None None
AVideo/YouPHPTube AVideo/YouPHPTube 10.0 and prior is affected by a SQL Injection SQL injection in the catName parameter which allows a remote unauthenticated attacker to retrieve databases information such as application passwords hashes.
1006 CVE-2021-25509 20 2021-11-05 2021-11-09
3.6
None Local Low Not required None Partial Partial
A missing input validation in Samsung Flow Windows application prior to Version 4.8.5.0 allows attackers to overwrite abtraty file in the Windows known folders.
1007 CVE-2021-25508 269 2021-11-05 2021-11-09
7.5
None Remote Low Not required Partial Partial Partial
Improper privilege management vulnerability in API Key used in SmartThings prior to 1.7.73.22 allows an attacker to abuse the API key without limitation.
1008 CVE-2021-25507 863 2021-11-05 2021-11-09
2.7
None Local Network Low ??? Partial None None
Improper authorization vulnerability in Samsung Flow mobile application prior to 4.8.03.5 allows Samsung Flow PC application connected with user device to access part of notification data in Secure Folder without authorization.
1009 CVE-2021-25506 863 DoS 2021-11-05 2021-11-09
2.1
None Local Low Not required None None Partial
Non-existent provider in Samsung Health prior to 6.19.1.0001 allows attacker to access it via malicious content provider or lead to denial of service.
1010 CVE-2021-25505 287 2021-11-05 2021-11-08
6.8
None Remote Medium Not required Partial Partial Partial
Improper authentication in Samsung Pass prior to 3.0.02.4 allows to use app without authentication when lockscreen is unlocked.
1011 CVE-2021-25504 20 2021-11-05 2021-11-08
2.1
None Local Low Not required Partial None None
Intent redirection vulnerability in Group Sharing prior to 10.8.03.2 allows attacker to access contact information.
1012 CVE-2021-25503 20 Exec Code 2021-11-05 2021-11-08
4.6
None Local Low Not required Partial Partial Partial
Improper input validation vulnerability in HDCP prior to SMR Nov-2021 Release 1 allows attackers to arbitrary code execution.
1013 CVE-2021-25502 312 2021-11-05 2021-11-08
2.1
None Local Low Not required Partial None None
A vulnerability of storing sensitive information insecurely in Property Settings prior to SMR Nov-2021 Release 1 allows attackers to read ESN value without priviledge.
1014 CVE-2021-25501 863 2021-11-05 2021-11-08
2.1
None Local Low Not required None Partial None
An improper access control vulnerability in SCloudBnRReceiver in SecTelephonyProvider prior to SMR Nov-2021 Release 1 allows untrusted application to call some protected providers.
1015 CVE-2021-25500 20 2021-11-05 2021-11-08
2.1
None Local Low Not required None Partial None
A missing input validation in HDCP LDFW prior to SMR Nov-2021 Release 1 allows attackers to overwrite TZASC allowing TEE compromise.
1016 CVE-2021-25269 428 2021-11-26 2021-12-03
2.1
None Local Low Not required None None Partial
A local administrator could prevent the HMPA service from starting despite tamper protection using an unquoted service path vulnerability in the HMPA component of Sophos Intercept X Advanced and Sophos Intercept X Advanced for Server before version 2.0.23, as well as Sophos Exploit Prevention before version 3.8.3.
1017 CVE-2021-24927 79 XSS 2021-11-29 2021-11-29
3.5
None Remote Medium ??? None Partial None
The My Calendar WordPress plugin before 3.2.18 does not sanitise and escape the callback parameter of the mc_post_lookup AJAX action (available to any authenticated user) before outputting it back in the response, leading to a Reflected Cross-Site Scripting issue
1018 CVE-2021-24918 79 XSS 2021-11-29 2021-12-15
3.5
None Remote Medium ??? None Partial None
The Smash Balloon Social Post Feed WordPress plugin before 4.0.1 did not have any privilege or nonce validation before saving the plugin's setting. As a result, any logged-in user on a vulnerable site could update the settings and store rogue JavaScript on each of its posts and pages.
1019 CVE-2021-24915 89 Sql 2021-11-29 2021-12-15
7.5
None Remote Low Not required Partial Partial Partial
The Contest Gallery WordPress plugin before 13.1.0.6 does not have capability checks and does not sanitise or escape the cg-search-user-name-original parameter before using it in a SQL statement when exporting users from a gallery, which could allow unauthenticated to perform SQL injections attacks, as well as get the list of all users registered on the blog, including their username and email address
1020 CVE-2021-24908 79 XSS 2021-11-29 2021-11-29
2.6
None Remote High Not required None Partial None
The Check & Log Email WordPress plugin before 1.0.4 does not escape the d parameter before outputting it back in an attribute, leading to a Reflected Cross-Site Scripting
1021 CVE-2021-24899 79 XSS 2021-11-29 2021-11-29
3.5
None Remote Medium ??? None Partial None
The Media-Tags WordPress plugin through 3.2.0.2 does not sanitise and escape any of its Labels settings, which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_htnl capability is disallowed.
1022 CVE-2021-24894 400 DoS 2021-11-23 2021-11-29
4.0
None Remote Low ??? None None Partial
The Reviews Plus WordPress plugin before 1.2.14 does not validate the submitted rating, allowing submission of long integer, causing a Denial of Service in the review section when an authenticated user submit such rating and the reviews are set to be displayed on the post/page
1023 CVE-2021-24892 639 2021-11-23 2021-11-29
6.5
None Remote Low ??? Partial Partial Partial
Insecure Direct Object Reference in edit function of Advanced Forms (Free & Pro) before 1.6.9 allows authenticated remote attacker to change arbitrary user's email address and request for reset password, which could lead to take over of WordPress's administrator account. To exploit this vulnerability, an attacker must register to obtain a valid WordPress's user and use such user to authenticate with WordPress in order to exploit the vulnerable edit function.
1024 CVE-2021-24891 79 XSS 2021-11-23 2021-12-15
4.3
None Remote Medium Not required None Partial None
The Elementor Website Builder WordPress plugin before 3.4.8 does not sanitise or escape user input appended to the DOM via a malicious hash, resulting in a DOM Cross-Site Scripting issue.
1025 CVE-2021-24889 89 Sql 2021-11-29 2021-11-29
6.5
None Remote Low ??? Partial Partial Partial
The Ninja Forms Contact Form WordPress plugin before 3.6.4 does not escape keys of the fields POST parameter, which could allow high privilege users to perform SQL injections attacks
1026 CVE-2021-24888 79 XSS 2021-11-23 2021-11-29
3.5
None Remote Medium ??? None Partial None
The ImageBoss WordPress plugin before 3.0.6 does not sanitise and escape its Source Name setting, which could allow high privilege users to perform Cross-Site Scripting attacks
1027 CVE-2021-24883 79 XSS 2021-11-29 2021-11-30
3.5
None Remote Medium ??? None Partial None
The Popup Anything WordPress plugin before 2.0.4 does not escape the Link Text and Button Text fields of Popup, which could allow users with a role as low as Contributor to perform Cross-Site Scripting attacks
1028 CVE-2021-24882 79 XSS 2021-11-23 2021-11-26
3.5
None Remote Medium ??? None Partial None
The Slideshow Gallery WordPress plugin before 1.7.4 does not sanitise and escape the Slide "Title", "Description", and Gallery "Title" fields, which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_html is disallowed
1029 CVE-2021-24877 89 Sql 2021-11-23 2021-11-26
6.0
None Remote Medium ??? Partial Partial Partial
The MainWP Child WordPress plugin before 4.1.8 does not validate the orderby and order parameter before using them in a SQL statement, leading to an SQL injection exploitable by high privilege users such as admin when the Backup and Staging by WP Time Capsule plugin is installed
1030 CVE-2021-24876 79 XSS 2021-11-29 2021-11-29
4.3
None Remote Medium Not required None Partial None
The Registrations for the Events Calendar WordPress plugin before 2.7.5 does not escape the v parameter before outputting it back in an attribute, leading to a Reflected Cross-Site Scripting
1031 CVE-2021-24875 79 XSS 2021-11-23 2021-11-24
4.3
None Remote Medium Not required None Partial None
The eCommerce Product Catalog Plugin for WordPress plugin before 3.0.39 does not escape the ic-settings-search parameter before outputting it back in the page in an attribute, leading to a Reflected Cross-Site Scripting issue
1032 CVE-2021-24873 79 XSS 2021-11-23 2021-11-24
4.3
None Remote Medium Not required None Partial None
The Tutor LMS WordPress plugin before 1.9.11 does not sanitise and escape user input before outputting back in attributes in the Student Registration page, leading to a Reflected Cross-Site Scripting issue
1033 CVE-2021-24860 89 Sql 2021-11-29 2021-11-29
6.5
None Remote Low ??? Partial Partial Partial
The BSK PDF Manager WordPress plugin before 3.1.2 does not validate and escape the orderby and order parameters before using them in a SQL statement, leading to a SQL injection issue
1034 CVE-2021-24856 79 XSS 2021-11-17 2021-11-18
3.5
None Remote Medium ??? None Partial None
The Shared Files WordPress plugin before 1.6.61 does not sanitise and escape the Download Counter Text settings, which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed
1035 CVE-2021-24854 79 XSS 2021-11-17 2021-11-18
3.5
None Remote Medium ??? None Partial None
The QR Redirector WordPress plugin before 1.6.1 does not sanitise and escape some of the QR Redirect fields, which could allow users with a role as low as Contributor perform Stored Cross-Site Scripting attacks.
1036 CVE-2021-24853 352 CSRF 2021-11-17 2021-11-19
4.3
None Remote Medium Not required None Partial None
The QR Redirector WordPress plugin before 1.6 does not have capability and CSRF checks when saving bulk QR Redirector settings via the qr_save_bulk AJAX action, which could allow any authenticated user, such as subscriber to change the redirect response status code of arbitrary QR Redirects
1037 CVE-2021-24852 352 CSRF 2021-11-17 2022-01-04
4.3
None Remote Medium Not required None Partial None
The MouseWheel Smooth Scroll WordPress plugin before 5.7 does not have CSRF check in place on its settings page, which could allow attackers to make a logged in admin change them via a CSRF attack
1038 CVE-2021-24851 863 2021-11-17 2021-12-16
4.0
None Remote Low ??? Partial None None
The Insert Pages WordPress plugin before 3.7.0 allows users with a role as low as Contributor to access content and metadata from arbitrary posts/pages regardless of their author and status (ie private), using a shortcode. Password protected posts/pages are not affected by such issue.
1039 CVE-2021-24850 79 XSS 2021-11-17 2021-11-18
3.5
None Remote Medium ??? None Partial None
The Insert Pages WordPress plugin before 3.7.0 adds a shortcode that prints out other pages' content and custom fields. It can be used by users with a role as low as Contributor to perform Cross-Site Scripting attacks by storing the payload/s in another post's custom fields.
1040 CVE-2021-24847 89 Sql 2021-11-17 2021-11-18
6.5
None Remote Low ??? Partial Partial Partial
The importFromRedirection AJAX action of the SEO Redirection Plugin – 301 Redirect Manager WordPress plugin before 8.2, available to any authenticated user, does not properly sanitise the offset parameter before using it in a SQL statement, leading an SQL injection when the redirection plugin is also installed
1041 CVE-2021-24844 89 Sql 2021-11-08 2021-11-13
6.5
None Remote Low ??? Partial Partial Partial
The Affiliates Manager WordPress plugin before 2.8.7 does not validate the orderby parameter before using it in an SQL statement in the admin dashboard, leading to an SQL Injection issue
1042 CVE-2021-24842 862 2021-11-29 2021-11-29
5.5
None Remote Low ??? Partial Partial None
The Bulk Datetime Change WordPress plugin before 1.12 does not enforce capability checks which allows users with Contributor roles to 1) list private post titles of other users and 2) change the posted date of other users' posts.
1043 CVE-2021-24841 79 XSS 2021-11-17 2021-11-18
3.5
None Remote Medium ??? None Partial None
The Helpful WordPress plugin before 4.4.59 does not sanitise and escape some of its settings, which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed
1044 CVE-2021-24840 639 2021-11-08 2021-11-13
5.0
None Remote Low Not required Partial None None
The Squaretype WordPress theme before 3.0.4 allows unauthenticated users to manipulate the query_vars used to retrieve the posts to display in one of its REST endpoint, without any validation. As a result, private and scheduled posts could be retrieved via a crafted request.
1045 CVE-2021-24835 89 Sql 2021-11-08 2021-11-13
6.5
None Remote Low ??? Partial Partial Partial
The WCFM – Frontend Manager for WooCommerce along with Bookings Subscription Listings Compatible WordPress plugin before 6.5.12, when used in combination with another WCFM - WooCommerce Multivendor plugin such as WCFM - WooCommerce Multivendor Marketplace, does not escape the withdrawal_vendor parameter before using it in a SQL statement, allowing low privilege users such as Subscribers to perform SQL injection attacks
1046 CVE-2021-24834 79 Exec Code XSS 2021-11-17 2021-11-18
4.3
None Remote Medium Not required None Partial None
The YOP Poll WordPress plugin before 6.3.1 is affected by a stored Cross-Site Scripting vulnerability which exists in the Create Poll - Options module where a user with a role as low as author is allowed to execute arbitrary script code within the context of the application. This vulnerability is due to insufficient validation of custom label parameters - vote button label , results link label and back to vote caption label.
1047 CVE-2021-24833 79 Exec Code XSS 2021-11-17 2021-11-18
3.5
None Remote Medium ??? None Partial None
The YOP Poll WordPress plugin before 6.3.1 is affected by a stored Cross-Site Scripting vulnerability, which exists in the Admin preview module where a user with a role as low as author is allowed to execute arbitrary script code within the context of the application. This vulnerability is due to insufficient validation of question and answer text parameters in Create Poll module.
1048 CVE-2021-24832 352 CSRF 2021-11-08 2021-11-13
4.3
None Remote Medium Not required None Partial None
The WP SEO Redirect 301 WordPress plugin before 2.3.2 does not have CSRF in place when deleting redirects, which could allow attackers to make a logged in admin delete them via a CSRF attack
1049 CVE-2021-24830 79 XSS 2021-11-23 2021-11-24
3.5
None Remote Medium ??? None Partial None
The Advanced Access Manager WordPress plugin before 6.8.0 does not escape some of its settings when outputting them, allowing high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed
1050 CVE-2021-24829 89 Sql 2021-11-08 2021-11-10
6.5
None Remote Low ??? Partial Partial Partial
The Visitor Traffic Real Time Statistics WordPress plugin before 3.9 does not validate and escape user input passed to the today_traffic_index AJAX action (available to any authenticated users) before using it in a SQL statement, leading to an SQL injection issue
Total number of vulnerabilities : 1511   Page : 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 (This Page)22 23 24 25 26 27 28 29 30 31
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.