Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveWPScanCVE-2021-24150
HistoryApr 05, 2021 - 7:15 p.m.

CVE-2021-24150

2021-04-0519:15:14
CWE-918
WPScan
web.nvd.nist.gov
28
cve-2021-24150
likebtn
wordpress
plugin
ssrf
vulnerability
unauthenticated
full-read
server-side request forgery
nvd

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

EPSS

0.022

Percentile

89.6%

JSON

The LikeBtn WordPress Like Button Rating ♥ LikeBtn WordPress plugin before 2.6.32 was vulnerable to Unauthenticated Full-Read Server-Side Request Forgery (SSRF).

Affected configurations

Nvd
Vulners
Node
likebtn-like-button_projectlikebtn-like-buttonRange<2.6.32wordpress
VendorProductVersionCPE
likebtn-like-button_projectlikebtn-like-button*cpe:2.3:a:likebtn-like-button_project:likebtn-like-button:*:*:*:*:*:wordpress:*:*

CNA Affected

[
  {
    "product": "Like Button Rating ♥ LikeBtn",
    "vendor": "Unknown",
    "versions": [
      {
        "lessThan": "2.6.32",
        "status": "affected",
        "version": "2.6.32",
        "versionType": "custom"
      }
    ]
  }
]

Related

nuclei 1
cvelist 1
prion 1
nvd 1
wpvulndb 1
wpexploit 1
nuclei
nuclei
WordPress Like Button Rating <2.6.32 - Server-Side Request Forgery
2022-10-06 14:22:13
cvelist
cvelist
CVE-2021-24150 Like Button Rating < 2.6.32 - Unauthenticated Full-Read SSRF
2021-04-05 18:27:42
prion
prion
Server side request forgery (ssrf)
2021-04-05 19:15:00
nvd
nvd
CVE-2021-24150
2021-04-05 19:15:14
wpvulndb
wpvulndb
Like Button Rating < 2.6.32 - Unauthenticated Full-Read SSRF
2021-02-06 00:00:00
wpexploit
wpexploit
Like Button Rating < 2.6.32 - Unauthenticated Full-Read SSRF
2021-02-06 00:00:00

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

EPSS

0.022

Percentile

89.6%

JSON
Related for CVE-2021-24150
nuclei1cvelist1prion1nvd1wpvulndb1wpexploit1