Simple 301 Redirects by BetterLinks - 2.0.0-2.0.3 - Arbitrary Plugin Installation
CVE-2021-24354

8.8HIGH

Key Information:

Vendor: Wordpress
Status: Simple 301 Redirects By Betterlinks
Vendor: CVE Published:; 14 June 2021

Summary

A lack of capability checks and insufficient nonce check on the AJAX action in the Simple 301 Redirects by BetterLinks WordPress plugin before 2.0.4, made it possible for authenticated users to install arbitrary plugins on vulnerable sites.

Affected Version(s)

Simple 301 Redirects by BetterLinks 2.0.0 < 2.0.0*

Simple 301 Redirects by BetterLinks 2.0.4

References

https://www.wordfence.com/blog/2021/05/severe-vulnerabili...

x_refsource_MISC

https://wpscan.com/vulnerability/8638b36c-6641-491f-b9df-...

x_refsource_CONFIRM

CVSS V3.1

Score:

8.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jun 14, 2021
Vulnerability Reserved
Jan 14, 2021

Credit

Chloe Chamberland