CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
  Take a third party risk management course for FREE
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Security Vulnerabilities Published In November 2021

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
1051 CVE-2021-24827 89 Sql 2021-11-08 2021-11-10
7.5
None Remote Low Not required Partial Partial Partial
The Asgaros Forum WordPress plugin before 1.15.13 does not validate and escape user input when subscribing to a topic before using it in a SQL statement, leading to an unauthenticated SQL injection issue
1052 CVE-2021-24822 79 XSS CSRF 2021-11-29 2021-12-15
3.5
None Remote Medium ??? None Partial None
The Stylish Cost Calculator WordPress plugin before 7.0.4 does not have any authorisation and CSRF checks on some of its AJAX actions (available to authenticated users), which could allow any authenticated users, such as subscriber to call them, and perform Stored Cross-Site Scripting attacks against logged in admin, as well as frontend users due to the lack of sanitisation and escaping in some parameters
1053 CVE-2021-24816 2021-11-08 2021-11-09
4.0
None Remote Low ??? None Partial None
The Phoenix Media Rename WordPress plugin before 3.4.4 does not have capability checks in its phoenix_media_rename AJAX action, which could allow users with Author roles to rename any uploaded media files, including ones they do not own.
1054 CVE-2021-24815 79 XSS 2021-11-17 2021-12-16
3.5
None Remote Medium ??? None Partial None
The Accept Donations with PayPal WordPress plugin before 1.3.2 does not escape the Amount Menu Name field of created Buttons, which could allow a high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed.
1055 CVE-2021-24813 79 XSS 2021-11-01 2021-11-02
3.5
None Remote Medium ??? None Partial None
The Events Made Easy WordPress plugin before 2.2.24 does not sanitise and escape Custom Field Names, allowing high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed
1056 CVE-2021-24812 79 XSS 2021-11-23 2021-11-24
3.5
None Remote Medium ??? None Partial None
The BetterLinks WordPress plugin before 1.2.6 does not sanitise and escape some of imported link fields, which could lead to Stored Cross-Site Scripting issues when an admin import a malicious CSV.
1057 CVE-2021-24811 79 XSS 2021-11-29 2021-11-29
3.5
None Remote Medium ??? None Partial None
The Shop Page WP WordPress plugin before 1.2.8 does not sanitise and escape some of the Product fields, allowing high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed.
1058 CVE-2021-24809 352 CSRF 2021-11-01 2021-11-09
6.8
None Remote Medium Not required Partial Partial Partial
The BP Better Messages WordPress plugin before 1.9.9.41 does not check for CSRF in multiple of its AJAX actions: bp_better_messages_leave_chat, bp_better_messages_join_chat, bp_messages_leave_thread, bp_messages_mute_thread, bp_messages_unmute_thread, bp_better_messages_add_user_to_thread, bp_better_messages_exclude_user_from_thread. This could allow attackers to make logged in users do unwanted actions
1059 CVE-2021-24808 79 XSS 2021-11-01 2021-11-09
4.3
None Remote Medium Not required None Partial None
The BP Better Messages WordPress plugin before 1.9.9.41 sanitise (with sanitize_text_field) but does not escape the 'subject' parameter before outputting it back in an attribute, leading to a Reflected Cross-Site Scripting issue
1060 CVE-2021-24807 79 XSS 2021-11-08 2021-11-09
3.5
None Remote Medium ??? None Partial None
The Support Board WordPress plugin before 3.3.5 allows Authenticated (Agent+) users to perform Cross-Site Scripting attacks by placing a payload in the notes field, when an administrator or any authenticated user go to the chat the XSS will be automatically executed.
1061 CVE-2021-24806 352 CSRF 2021-11-08 2021-11-09
4.3
None Remote Medium Not required None Partial None
The wpDiscuz WordPress plugin before 7.3.4 does check for CSRF when adding, editing and deleting comments, which could allow attacker to make logged in users such as admin edit and delete arbitrary comment, or the user who made the comment to edit it via a CSRF attack. Attackers could also make logged in users post arbitrary comment.
1062 CVE-2021-24804 352 2021-11-17 2021-11-19
6.8
None Remote Medium Not required Partial Partial Partial
The Simple JWT Login WordPress plugin before 3.2.1 does not have nonce checks when saving its settings, allowing attackers to make a logged in admin changed them. Settings such as HMAC verification secret, account registering and default user roles can be updated, which could result in site takeover.
1063 CVE-2021-24802 352 CSRF 2021-11-17 2021-11-19
4.3
None Remote Medium Not required None Partial None
The Colorful Categories WordPress plugin before 2.0.15 does not enforce nonce checks which could allow attackers to make a logged in admin or editor change taxonomy colors via a CSRF attack
1064 CVE-2021-24801 352 XSS CSRF 2021-11-08 2021-11-10
4.3
None Remote Medium Not required None Partial None
The WP Survey Plus WordPress plugin through 1.0 does not have any authorisation and CSRF checks in place in its AJAX actions, allowing any user to call them and add/edit/delete Surveys. Furthermore, due to the lack of sanitization in the Surveys' Title, this could also lead to Stored Cross-Site Scripting issues
1065 CVE-2021-24799 352 CSRF 2021-11-01 2021-11-02
4.3
None Remote Medium Not required None Partial None
The Far Future Expiry Header WordPress plugin before 1.5 does not have CSRF check when saving its settings, which could allow attackers to make a logged in admin change them via a CSRF attack.
1066 CVE-2021-24798 79 XSS 2021-11-08 2021-11-10
4.3
None Remote Medium Not required None Partial None
The WP Header Images WordPress plugin before 2.0.1 does not sanitise and escape the t parameter before outputting it back in the plugin's settings page, leading to a Reflected Cross-Site Scripting issue
1067 CVE-2021-24796 79 XSS 2021-11-17 2021-11-19
4.3
None Remote Medium Not required None Partial None
The My Tickets WordPress plugin before 1.8.31 does not properly sanitise and escape the Email field of booked tickets before outputting it in the Payment admin dashboard, which could allow unauthenticated users to perform Cross-Site Scripting attacks against admins
1068 CVE-2021-24794 79 XSS 2021-11-01 2021-11-02
3.5
None Remote Medium ??? None Partial None
The Connections Business Directory WordPress plugin before 10.4.3 does not escape the Address settings when creating an Entry, which could allow high privilege users to perform Cross-Site Scripting when the unfiltered_html capability is disallowed.
1069 CVE-2021-24793 79 XSS 2021-11-01 2021-11-02
3.5
None Remote Medium ??? None Partial None
The WPeMatico RSS Feed Fetcher WordPress plugin before 2.6.12 does not escape the Feed URL added to a campaign before outputting it in an attribute, allowing high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed.
1070 CVE-2021-24791 89 Sql 2021-11-08 2021-11-10
6.5
None Remote Low ??? Partial Partial Partial
The Header Footer Code Manager WordPress plugin before 1.1.14 does not validate and escape the "orderby" and "order" request parameters before using them in a SQL statement when viewing the Snippets admin dashboard, leading to SQL injections
1071 CVE-2021-24789 79 XSS 2021-11-01 2021-11-02
3.5
None Remote Medium ??? None Partial None
The Flat Preloader WordPress plugin before 1.5.5 does not escape some of its settings when outputting them in attribute in the frontend, which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_html is disallowed
1072 CVE-2021-24788 863 2021-11-08 2021-12-16
4.0
None Remote Low ??? None Partial None
The Batch Cat WordPress plugin through 0.3 defines 3 custom AJAX actions, which both require authentication but are available for all roles. As a result, any authenticated user (including simple subscribers) can add/set/delete arbitrary categories to posts.
1073 CVE-2021-24787 79 XSS 2021-11-17 2021-11-18
3.5
None Remote Medium ??? None Partial None
The Client Invoicing by Sprout Invoices WordPress plugin before 19.9.7 does not sanitise and escape some of its settings, which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed
1074 CVE-2021-24783 863 2021-11-08 2021-12-10
4.0
None Remote Low ??? None Partial None
The Post Expirator WordPress plugin before 2.6.0 does not have proper capability checks in place, which could allow users with a role as low as Contributor to schedule deletion of arbitrary posts.
1075 CVE-2021-24781 2021-11-01 2021-11-02
4.0
None Remote Low ??? None Partial None
The Image Source Control WordPress plugin before 2.3.1 allows users with a role as low as Contributor to change arbitrary post meta fields of arbitrary posts (even those they should not be able to edit)
1076 CVE-2021-24776 352 CSRF 2021-11-17 2021-11-19
4.3
None Remote Medium Not required None Partial None
The WP Performance Score Booster WordPress plugin before 2.1 does not have CSRF check when saving its settings, which could allow attackers to make a logged in admin change them via a CSRF attack.
1077 CVE-2021-24773 79 XSS 2021-11-01 2021-11-02
3.5
None Remote Medium ??? None Partial None
The WordPress Download Manager WordPress plugin before 3.2.16 does not escape some of the Download settings when outputting them, allowing high privilege users to perform XSS attacks even when the unfiltered_html capability is disallowed
1078 CVE-2021-24772 89 Sql 2021-11-17 2021-11-19
6.5
None Remote Low ??? Partial Partial Partial
The Stream WordPress plugin before 3.8.2 does not sanitise and validate the order GET parameter from the Stream Records admin dashboard before using it in a SQL statement, leading to an SQL injection issue.
1079 CVE-2021-24770 863 2021-11-01 2021-11-30
4.0
None Remote Low ??? None Partial None
The Stylish Price List WordPress plugin before 6.9.1 does not perform capability checks in its spl_upload_ser_img AJAX action (available to authenticated users), which could allow any authenticated users, such as subscriber, to upload arbitrary images.
1080 CVE-2021-24768 79 XSS 2021-11-29 2021-12-07
3.5
None Remote Medium ??? None Partial None
The WP RSS Aggregator WordPress plugin before 4.19.2 does not properly sanitise and escape the URL to Blacklist field, allowing malicious HTML to be inserted by high privilege users even when the unfiltered_html capability is disallowed, which could lead to Cross-Site Scripting issues.
1081 CVE-2021-24767 352 CSRF 2021-11-08 2021-11-11
4.3
None Remote Medium Not required None Partial None
The Redirect 404 Error Page to Homepage or Custom Page with Logs WordPress plugin before 1.7.9 does not check for CSRF when deleting logs, which could allow attacker to make a logged in admin delete them via a CSRF attack
1082 CVE-2021-24766 352 CSRF 2021-11-08 2021-11-11
4.3
None Remote Medium Not required None Partial None
The 404 to 301 – Redirect, Log and Notify 404 Errors WordPress plugin before 3.0.9 does not have CSRF check in place when cleaning the logs, which could allow attacker to make a logged in admin delete all of them via a CSRF attack
1083 CVE-2021-24758 89 Sql 2021-11-17 2021-11-19
6.5
None Remote Low ??? Partial Partial Partial
The Email Log WordPress plugin before 2.4.7 does not properly validate, sanitise and escape the "orderby" and "order" GET parameters before using them in SQL statement in the admin dashboard, leading to SQL injections
1084 CVE-2021-24757 863 2021-11-01 2021-11-30
5.0
None Remote Low Not required None Partial None
The Stylish Price List WordPress plugin before 6.9.0 does not perform capability checks in its spl_upload_ser_img AJAX action (available to both unauthenticated and authenticated users), which could allow unauthenticated users to upload images.
1085 CVE-2021-24755 89 Sql 2021-11-29 2021-11-29
6.5
None Remote Low ??? Partial Partial Partial
The myCred WordPress plugin before 2.3 does not validate or escape the fields parameter before using it in a SQL statement, leading to an SQL injection exploitable by any authenticated user
1086 CVE-2021-24751 79 XSS 2021-11-29 2021-11-29
3.5
None Remote Medium ??? None Partial None
The GenerateBlocks WordPress plugin before 1.4.0 does not validate the generateblocks/container block's tagName attribute, which could allow users with a role as low as contributor to perform Cross-Site Scripting attacks.
1087 CVE-2021-24749 352 CSRF 2021-11-29 2021-11-29
4.3
None Remote Medium Not required None Partial None
The URL Shortify WordPress plugin before 1.5.1 does not have CSRF check in place when bulk-deleting links or groups, which could allow attackers to make a logged in admin delete arbitrary link and group via a CSRF attack.
1088 CVE-2021-24748 89 Sql 2021-11-29 2021-11-29
6.5
None Remote Low ??? Partial Partial Partial
The Email Before Download WordPress plugin before 6.8 does not properly validate and escape the order and orderby GET parameters before using them in SQL statements, leading to authenticated SQL injection issues
1089 CVE-2021-24745 79 XSS 2021-11-29 2021-11-29
3.5
None Remote Medium ??? None Partial None
The About Author Box WordPress plugin before 1.0.2 does not sanitise and escape the Social Profiles field values before outputting them in attributes, which could allow user with a role as low as contributor to perform Cross-Site Scripting attacks.
1090 CVE-2021-24742 863 2021-11-01 2021-11-30
4.0
None Remote Low ??? None Partial None
The Logo Slider and Showcase WordPress plugin before 1.3.37 allows Editor users to update the plugin's settings via the rtWLSSettings AJAX action because it uses a nonce for authorisation instead of a capability check.
1091 CVE-2021-24731 89 Sql 2021-11-08 2021-11-10
7.5
None Remote Low Not required Partial Partial Partial
The Registration Forms – User profile, Content Restriction, Spam Protection, Payment Gateways, Invitation Codes WordPress plugin before 3.7.1.6 does not properly escape user data before using it in a SQL statement in the wp-json/pie/v1/login REST API endpoint, leading to an SQL injection.
1092 CVE-2021-24729 79 XSS 2021-11-23 2021-12-16
3.5
None Remote Medium ??? None Partial None
The Logo Showcase with Slick Slider WordPress plugin before 1.2.4 does not sanitise the Grid Settings, which could allow users with a role as low as Author to perform stored Cross-Site Scripting attacks via post metadata of Grid logo showcase.
1093 CVE-2021-24723 79 XSS 2021-11-01 2021-11-02
3.5
None Remote Medium ??? None Partial None
The WP Reactions Lite WordPress plugin before 1.3.6 does not properly sanitize inputs within wp-admin pages, allowing users with sufficient access to inject XSS payloads within /wp-admin/ pages.
1094 CVE-2021-24722 79 XSS 2021-11-01 2021-11-30
3.5
None Remote Medium ??? None Partial None
The Restaurant Menu by MotoPress WordPress plugin before 2.4.2 does not properly sanitize or escape inputs when creating new menu items, which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed
1095 CVE-2021-24721 94 2021-11-08 2021-11-10
4.0
None Remote Low ??? None Partial None
The Loco Translate WordPress plugin before 2.5.4 mishandles data inputs which get saved to a file, which can be renamed to an extension ending in .php, resulting in authenticated "translator" users being able to inject PHP code into files ending with .php in web accessible locations.
1096 CVE-2021-24717 863 2021-11-01 2021-11-30
6.5
None Remote Low ??? Partial Partial Partial
The AutomatorWP WordPress plugin before 1.7.6 does not perform capability checks which allows users with Subscriber roles to enumerate automations, disclose title of private posts or user emails, call functions, or perform privilege escalation via Ajax actions.
1097 CVE-2021-24716 79 XSS 2021-11-01 2021-11-02
3.5
None Remote Medium ??? None Partial None
The Modern Events Calendar Lite WordPress plugin before 5.22.3 does not properly sanitize or escape values set by users with access to adjust settings withing wp-admin.
1098 CVE-2021-24715 79 XSS 2021-11-01 2021-11-02
3.5
None Remote Medium ??? None Partial None
The WP Sitemap Page WordPress plugin before 1.7.0 does not properly sanitise and escape some of its settings, which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed.
1099 CVE-2021-24713 79 XSS 2021-11-23 2021-11-24
3.5
None Remote Medium ??? None Partial None
The Video Lessons Manager WordPress plugin before 1.7.2 and Video Lessons Manager Pro WordPress plugin before 3.5.9 do not properly sanitize and escape values when updating their settings, which could allow high privilege users to perform Cross-Site Scripting attacks
1100 CVE-2021-24710 79 XSS 2021-11-08 2021-11-11
3.5
None Remote Medium ??? None Partial None
The Print-O-Matic WordPress plugin before 2.0.3 does not escape some of its settings before outputting them in attribute, which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed.
Total number of vulnerabilities : 1511   Page : 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 (This Page)23 24 25 26 27 28 29 30 31
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.