CVE-2021-25076

State: PUBLISHED · Published: 2022-01-24 · Updated: 2024-08-03 · Assigner: WPScan

Description

The WP User Frontend WordPress plugin before 3.5.26 does not validate and escape the status parameter before using it in a SQL statement in the Subscribers dashboard, leading to an SQL injection. Due to the lack of sanitisation and escaping, this could also lead to Reflected Cross-Site Scripting

CWE

CWE-89 — CWE-89 SQL Injection

Affected

Unknown / WP User Frontend – Membership, Profile, Registration & Post Submission Plugin for WordPress — v=3.5.26 <3.5.26 [affected]

CVSS

(none)

References

https://wpscan.com/vulnerability/6d3eeba6-5560-4380-a6e9-f008a9112ac6 x_refsource_MISC
https://plugins.trac.wordpress.org/changeset/2648715 x_refsource_CONFIRM
http://packetstormsecurity.com/files/166071/WordPress-WP-User-Frontend-3.5.25-SQL-Injection.html x_refsource_MISC

Source

cvelistV5-main/cves/2021/25xxx/CVE-2021-25076.json