OptinMonster <= 2.6.4 Unprotected REST-API Endpoints
CVE-2021-39341

8.2HIGH

Key Information:

Vendor
Wordpress
Status
Optinmonster
Vendor
CVE Published:
1 November 2021

Summary

The OptinMonster WordPress plugin is vulnerable to sensitive information disclosure and unauthorized setting updates due to insufficient authorization validation via the logged_in_or_has_api_key function in the ~/OMAPI/RestApi.php file that can used to exploit inject malicious web scripts on sites with the plugin installed. This affects versions up to, and including, 2.6.4.

Affected Version(s)

OptinMonster 2.6.4

References

https://www.wordfence.com/blog/2021/10/1000000-sites-affe...
x_refsource_MISC
https://wordfence.com/vulnerability-advisories/#CVE-2021-...
x_refsource_MISC
https://plugins.trac.wordpress.org/browser/optinmonster/t...
x_refsource_MISC

CVSS V3.1

Score:
8.2
Severity:
HIGH
Confidentiality:
High
Integrity:
Low
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

Chloe Chamberland, Wordfence
.