WP Super Cache < 1.7.3 - Authenticated Remote Code Execution
CVE-2021-24312

7.2HIGH

Key Information:

Vendor: Wordpress
Status: WP Super Cache
Vendor: CVE Published:; 1 June 2021

Summary

The parameters $cache_path, $wp_cache_debug_ip, $wp_super_cache_front_page_text, $cache_scheduled_time, $cached_direct_pages used in the settings of WP Super Cache WordPress plugin before 1.7.3 result in RCE because they allow input of '$' and '\n'. This is due to an incomplete fix of CVE-2021-24209.

Affected Version(s)

WP Super Cache 1.7.3

References

https://wpscan.com/vulnerability/2142c3d3-9a7f-4e3c-8776-...

x_refsource_CONFIRM

CVSS V3.1

Score:

7.2

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jun 1, 2021
Vulnerability Reserved
Jan 14, 2021

Credit

NGA