Lucene search

WordfenceCVELIST:CVE-2021-34636

HistorySep 28, 2021 - 1:53 p.m.

CVE-2021-34636 Countdown and CountUp, WooCommerce Sales Timer <= 1.5.7 Cross-Site Request Forgery to Stored Cross-Site Scripting

2021-09-2813:53:30

CWE-352

Wordfence

www.cve.org

cve-2021-34636

cross-site request forgery

stored cross-site scripting

countdown and countup

woocommerce sales timers

wordpress plugin

missing nonce check

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

AI Score

8.7

Confidence

High

EPSS

0.001

Percentile

41.1%

JSON

The Countdown and CountUp, WooCommerce Sales Timers WordPress plugin is vulnerable to Cross-Site Request Forgery via the save_theme function found in the ~/includes/admin/coundown_theme_page.php file due to a missing nonce check which allows attackers to inject arbitrary web scripts, in versions up to and including 1.5.7.

CNA Affected

[
  {
    "product": "Countdown and CountUp, WooCommerce Sales Timers",
    "vendor": "WpDevArt",
    "versions": [
      {
        "lessThanOrEqual": "1.5.7",
        "status": "affected",
        "version": "1.5.7",
        "versionType": "custom"
      }
    ]
  }
]

References

plugins.trac.wordpress.org/changeset/2605523/countdown-wpdevart-extended/trunk/includes/admin/coundown_theme_page.php

www.wordfence.com/vulnerability-advisories/#CVE-2021-34636

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

AI Score

8.7

Confidence

High

EPSS

0.001

Percentile

41.1%

JSON

Related for CVELIST:CVE-2021-34636