Download Plugin < 1.6.1 - Subscriber+ Arbitrary Plugin Activation
CVE-2021-24703

5.7MEDIUM

Key Information:

Vendor: Wordpress
Status: Download Plugin
Vendor: CVE Published:; 23 November 2021

Summary

The Download Plugin WordPress plugin before 1.6.1 does not have capability and CSRF checks in the dpwap_plugin_activate AJAX action, allowing any authenticated users, such as subscribers, to activate plugins that are already installed.

Affected Version(s)

Download Plugin 1.6.1

References

https://wpscan.com/vulnerability/4ed8296e-1306-481f-9a22-...

x_refsource_MISC

CVSS V3.1

Score:

5.7

Severity:

MEDIUM

Confidentiality:

None

Integrity:

High

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
Nov 23, 2021
Vulnerability Reserved
Jan 14, 2021

Credit

apple502j