CVE-2021-25106

WPLegalPages < 2.7.1 - Subscriber+ Arbitrary Settings Update to Stored XSS

EPSS 0.6%CWE-79

Vexday Risk Score

3Low

SSVC decision (CISA)

Track

No exploitation signal → monitor

CVSS —EPSS 0.6%KEV nãoPoC —Nuclei —Metasploit —Patch —

Lifecycle

07 Feb 2022Published on NVD

Recommendation: Monitor — no exploitation signal at the moment.

The Privacy Policy Generator, Terms & Conditions Generator WordPress Plugin : WPLegalPages WordPress plugin before 2.7.1 does not check for authorisation and has a flawed CSRF logic when saving its settings, allowing any authenticated users, such as subscriber, to update them. Furthermore, due to the lack of sanitisation and escaping, it could lead to Stored Cross-Site Scripting

Affected products

Unknown · Privacy Policy Generator, Terms & Conditions Generator WordPress Plugin : WPLegalPages

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://wpscan.com/vulnerability/47df802d-5200-484b-959c-9f569edf992e