CVE-2021-24800

The DW Question & Answer Pro WordPress plugin through 1.3.4 does not check that the comment to edit belongs to the user making the request, allowing any user to edit other comments.

CVSS v3 4.3 MEDIUM
CVSS v2.0 4.0 MEDIUM

4.3^/10

CVSS v3 : MEDIUM

Vector :

Exploitability : 2.8 / Impact : 1.4

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact LOW

Availability Impact NONE

Scope UNCHANGED

4.0^/10

CVSS v2.0 : MEDIUM

Vector : AV:N/AC:L/Au:S/C:N/I:P/A:N

Exploitability : 8.0 / Impact : 2.9

Access Vector NETWORK

Access Complexity LOW

Authentication SINGLE

Confidentiality Impact NONE

Integrity Impact PARTIAL

Availability Impact NONE

References

Link	Resource
https://wpscan.com/vulnerability/cd37ca81-d683-4955-bc97-60204cb9c346	Exploit Third Party Advisory
https://wpscan.com/vulnerability/cd37ca81-d683-4955-bc97-60204cb9c346	Exploit Third Party Advisory

Configurations

Configuration 1 (hide)

cpe:2.3:a:designwall:dw_question_\&_answer:*:*:*:*:pro:wordpress:*:*

History

No history.

Information

Published : 2022-04-25 16:16

Updated : 2024-11-21 05:53

NVD link : CVE-2021-24800

Mitre link : CVE-2021-24800

CVE.ORG link : CVE-2021-24800

JSON object : View

Products Affected

designwall

dw_question_\&_answer

CWE

CWE-639

Authorization Bypass Through User-Controlled Key

{"id": "CVE-2021-24800", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 4.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:S/C:N/I:P/A:N", "authentication": "SINGLE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 8.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 4.3, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N", "integrityImpact": "LOW", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "LOW", "confidentialityImpact": "NONE"}, "impactScore": 1.4, "exploitabilityScore": 2.8}]}, "published": "2022-04-25T16:16:06.930", "references": [{"url": "https://wpscan.com/vulnerability/cd37ca81-d683-4955-bc97-60204cb9c346", "tags": ["Exploit", "Third Party Advisory"], "source": "contact@wpscan.com"}, {"url": "https://wpscan.com/vulnerability/cd37ca81-d683-4955-bc97-60204cb9c346", "tags": ["Exploit", "Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Secondary", "source": "contact@wpscan.com", "description": [{"lang": "en", "value": "CWE-639"}]}, {"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-639"}]}], "descriptions": [{"lang": "en", "value": "The DW Question & Answer Pro WordPress plugin through 1.3.4 does not check that the comment to edit belongs to the user making the request, allowing any user to edit other comments."}, {"lang": "es", "value": "El plugin DW Question & Answer Pro de WordPress versiones hasta 1.3.4, no comprueba que el comentario a editar pertenezca al usuario que realiza la petici\u00f3n, permitiendo a cualquier usuario editar otros comentarios"}], "lastModified": "2024-11-21T05:53:47.327", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:designwall:dw_question_\\&_answer:*:*:*:*:pro:wordpress:*:*", "vulnerable": true, "matchCriteriaId": "5D7D27AA-17A9-492A-9CBC-7817357F5389", "versionEndIncluding": "1.3.4"}], "operator": "OR"}]}], "sourceIdentifier": "contact@wpscan.com"}