CVE-2021-24978 - Vulnerability Details

Vendors	Products
B4after	Osmapper

Link	Providers
https://wpscan.com/vulnerability/f0f2af29-e21e-4d16-9424-1a49bff7fb86

Show plain JSON

{"containers": {"cna": {"affected": [{"product": "OSMapper", "vendor": "Unknown", "versions": [{"lessThanOrEqual": "2.1.5", "status": "affected", "version": "2.1.5", "versionType": "custom"}]}], "credits": [{"lang": "en", "value": "dc11"}], "descriptions": [{"lang": "en", "value": "The OSMapper WordPress plugin through 2.1.5 contains an AJAX action to delete a plugin related post type named 'map' and is registered with the wp_ajax_nopriv prefix, making it available to unauthenticated users. There is no authorisation, CSRF and checks in place to ensure that the post to delete is a map one. As a result, unauthenticated user can delete arbitrary posts from the blog"}], "problemTypes": [{"descriptions": [{"cweId": "CWE-862", "description": "CWE-862 Missing Authorization", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"dateUpdated": "2022-03-28T17:21:14", "orgId": "1bfdd5d7-9bf6-4a53-96ea-42e2716d7a81", "shortName": "WPScan"}, "references": [{"tags": ["x_refsource_MISC"], "url": "https://wpscan.com/vulnerability/f0f2af29-e21e-4d16-9424-1a49bff7fb86"}], "source": {"discovery": "EXTERNAL"}, "title": "OSMapper <= 2.1.5 - Unauthenticated Arbitrary Post Deletion", "x_generator": "WPScan CVE Generator", "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "contact@wpscan.com", "ID": "CVE-2021-24978", "STATE": "PUBLIC", "TITLE": "OSMapper <= 2.1.5 - Unauthenticated Arbitrary Post Deletion"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "OSMapper", "version": {"version_data": [{"version_affected": "<=", "version_name": "2.1.5", "version_value": "2.1.5"}]}}]}, "vendor_name": "Unknown"}]}}, "credit": [{"lang": "eng", "value": "dc11"}], "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "The OSMapper WordPress plugin through 2.1.5 contains an AJAX action to delete a plugin related post type named 'map' and is registered with the wp_ajax_nopriv prefix, making it available to unauthenticated users. There is no authorisation, CSRF and checks in place to ensure that the post to delete is a map one. As a result, unauthenticated user can delete arbitrary posts from the blog"}]}, "generator": "WPScan CVE Generator", "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "CWE-862 Missing Authorization"}]}]}, "references": {"reference_data": [{"name": "https://wpscan.com/vulnerability/f0f2af29-e21e-4d16-9424-1a49bff7fb86", "refsource": "MISC", "url": "https://wpscan.com/vulnerability/f0f2af29-e21e-4d16-9424-1a49bff7fb86"}]}, "source": {"discovery": "EXTERNAL"}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-03T19:49:14.082Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://wpscan.com/vulnerability/f0f2af29-e21e-4d16-9424-1a49bff7fb86"}]}]}, "cveMetadata": {"assignerOrgId": "1bfdd5d7-9bf6-4a53-96ea-42e2716d7a81", "assignerShortName": "WPScan", "cveId": "CVE-2021-24978", "datePublished": "2022-03-28T17:21:15", "dateReserved": "2021-01-14T00:00:00", "dateUpdated": "2024-08-03T19:49:14.082Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{

containers : { »

cna : { »

affected : [ »

0 : { »

product : OSMapper (string)

vendor : Unknown (string)

versions : [ »

0 : { »

lessThanOrEqual : 2.1.5 (string)

status : affected (string)

version : 2.1.5 (string)

versionType : custom (string)

}

]

}

]

credits : [ »

0 : { »

lang : en (string)

value : dc11 (string)

}

]

descriptions : [ »

0 : { »

lang : en (string)

value : The OSMapper WordPress plugin through 2.1.5 contains an AJAX action to delete a plugin related post type named 'map' and is registered with the wp_ajax_nopriv prefix, making it available to unauthenticated users. There is no authorisation, CSRF and checks in place to ensure that the post to delete is a map one. As a result, unauthenticated user can delete arbitrary posts from the blog (string)

}

]

problemTypes : [ »

0 : { »

descriptions : [ »

0 : { »

cweId : CWE-862 (string)

description : CWE-862 Missing Authorization (string)

lang : en (string)

type : CWE (string)

}

]

}

]

providerMetadata : { »

dateUpdated : 2022-03-28T17:21:14 (string)

orgId : 1bfdd5d7-9bf6-4a53-96ea-42e2716d7a81 (string)

shortName : WPScan (string)

}

references : [ »

0 : { »

tags : [ »

0 : x_refsource_MISC (string)

]

url : https://wpscan.com/vulnerability/f0f2af29-e21e-4d16-9424-1a49bff7fb86 (string)

}

]

source : { »

discovery : EXTERNAL (string)

}

title : OSMapper <= 2.1.5 - Unauthenticated Arbitrary Post Deletion (string)

x_generator : WPScan CVE Generator (string)

x_legacyV4Record : { »

CVE_data_meta : { »

ASSIGNER : contact@wpscan.com (string)

ID : CVE-2021-24978 (string)

STATE : PUBLIC (string)

TITLE : OSMapper <= 2.1.5 - Unauthenticated Arbitrary Post Deletion (string)

}

affects : { »

vendor : { »

vendor_data : [ »

0 : { »

product : { »

product_data : [ »

0 : { »

product_name : OSMapper (string)

version : { »

version_data : [ »

0 : { »

version_affected : <= (string)

version_name : 2.1.5 (string)

version_value : 2.1.5 (string)

}

]

}

]

}

vendor_name : Unknown (string)

}

]

}

credit : [ »

0 : { »

lang : eng (string)

value : dc11 (string)

}

]

data_format : MITRE (string)

data_type : CVE (string)

data_version : 4.0 (string)

description : { »

description_data : [ »

0 : { »

lang : eng (string)

value : The OSMapper WordPress plugin through 2.1.5 contains an AJAX action to delete a plugin related post type named 'map' and is registered with the wp_ajax_nopriv prefix, making it available to unauthenticated users. There is no authorisation, CSRF and checks in place to ensure that the post to delete is a map one. As a result, unauthenticated user can delete arbitrary posts from the blog (string)

}

]

}

generator : WPScan CVE Generator (string)

problemtype : { »

problemtype_data : [ »

0 : { »

description : [ »

0 : { »

lang : eng (string)

value : CWE-862 Missing Authorization (string)

}

]

}

]

}

references : { »

reference_data : [ »

0 : { »

name : https://wpscan.com/vulnerability/f0f2af29-e21e-4d16-9424-1a49bff7fb86 (string)

refsource : MISC (string)

url : https://wpscan.com/vulnerability/f0f2af29-e21e-4d16-9424-1a49bff7fb86 (string)

}

]

}

source : { »

discovery : EXTERNAL (string)

}

adp : [ »

0 : { »

providerMetadata : { »

orgId : af854a3a-2127-422b-91ae-364da2661108 (string)

shortName : CVE (string)

dateUpdated : 2024-08-03T19:49:14.082Z (string)

}

title : CVE Program Container (string)

references : [ »

0 : { »

tags : [ »

0 : x_refsource_MISC (string)

1 : x_transferred (string)

]

url : https://wpscan.com/vulnerability/f0f2af29-e21e-4d16-9424-1a49bff7fb86 (string)

}

]

}

]

}

cveMetadata : { »

assignerOrgId : 1bfdd5d7-9bf6-4a53-96ea-42e2716d7a81 (string)

assignerShortName : WPScan (string)

cveId : CVE-2021-24978 (string)

datePublished : 2022-03-28T17:21:15 (string)

dateReserved : 2021-01-14T00:00:00 (string)

dateUpdated : 2024-08-03T19:49:14.082Z (string)

state : PUBLISHED (string)

}

dataType : CVE_RECORD (string)

dataVersion : 5.1 (string)

}

Show plain JSON

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:b4after:osmapper:*:*:*:*:*:wordpress:*:*", "matchCriteriaId": "11CE3CCD-1B48-485A-BCBB-2B64B28F9D63", "versionEndIncluding": "2.1.5", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "The OSMapper WordPress plugin through 2.1.5 contains an AJAX action to delete a plugin related post type named 'map' and is registered with the wp_ajax_nopriv prefix, making it available to unauthenticated users. There is no authorisation, CSRF and checks in place to ensure that the post to delete is a map one. As a result, unauthenticated user can delete arbitrary posts from the blog"}, {"lang": "es", "value": "El plugin OSMapper de WordPress versiones hasta 2.1.5, contiene una acci\u00f3n AJAX para eliminar un tipo de post relacionado con el plugin llamado \"map\" y est\u00e1 registrado con el prefijo wp_ajax_nopriv, haciendo que est\u00e9 disponible para usuarios no autenticados. No se presenta autorizaci\u00f3n, ni CSRF, ni comprobaciones para asegurar que el post a eliminar es un mapa. Como resultado, un usuario no autenticado puede eliminar entradas arbitrarias del blog"}], "id": "CVE-2021-24978", "lastModified": "2024-11-21T05:54:07.470", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 5.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 1.4, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2022-03-28T18:15:08.423", "references": [{"source": "contact@wpscan.com", "tags": ["Exploit", "Third Party Advisory"], "url": "https://wpscan.com/vulnerability/f0f2af29-e21e-4d16-9424-1a49bff7fb86"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Exploit", "Third Party Advisory"], "url": "https://wpscan.com/vulnerability/f0f2af29-e21e-4d16-9424-1a49bff7fb86"}], "sourceIdentifier": "contact@wpscan.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-862"}], "source": "contact@wpscan.com", "type": "Secondary"}, {"description": [{"lang": "en", "value": "CWE-352"}, {"lang": "en", "value": "CWE-862"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{

configurations : [ »

0 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:a:b4after:osmapper:*:*:*:*:*:wordpress:*:* (string)

matchCriteriaId : 11CE3CCD-1B48-485A-BCBB-2B64B28F9D63 (string)

versionEndIncluding : 2.1.5 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

}

]

descriptions : [ »

0 : { »

lang : en (string)

value : The OSMapper WordPress plugin through 2.1.5 contains an AJAX action to delete a plugin related post type named 'map' and is registered with the wp_ajax_nopriv prefix, making it available to unauthenticated users. There is no authorisation, CSRF and checks in place to ensure that the post to delete is a map one. As a result, unauthenticated user can delete arbitrary posts from the blog (string)

}

1 : { »

lang : es (string)

value : El plugin OSMapper de WordPress versiones hasta 2.1.5, contiene una acción AJAX para eliminar un tipo de post relacionado con el plugin llamado "map" y está registrado con el prefijo wp_ajax_nopriv, haciendo que esté disponible para usuarios no autenticados. No se presenta autorización, ni CSRF, ni comprobaciones para asegurar que el post a eliminar es un mapa. Como resultado, un usuario no autenticado puede eliminar entradas arbitrarias del blog (string)

}

]

id : CVE-2021-24978 (string)

lastModified : 2024-11-21T05:54:07.470 (string)

metrics : { »

cvssMetricV2 : [ »

0 : { »

acInsufInfo : false (boolean)

baseSeverity : MEDIUM (string)

cvssData : { »

accessComplexity : LOW (string)

accessVector : NETWORK (string)

authentication : NONE (string)

availabilityImpact : NONE (string)

baseScore : 5 (number)

confidentialityImpact : NONE (string)

integrityImpact : PARTIAL (string)

vectorString : AV:N/AC:L/Au:N/C:N/I:P/A:N (string)

version : 2.0 (string)

}

exploitabilityScore : 10 (number)

impactScore : 2.9 (number)

obtainAllPrivilege : false (boolean)

obtainOtherPrivilege : false (boolean)

obtainUserPrivilege : false (boolean)

source : nvd@nist.gov (string)

type : Primary (string)

userInteractionRequired : false (boolean)

}

]

cvssMetricV31 : [ »

0 : { »

cvssData : { »

attackComplexity : LOW (string)

attackVector : NETWORK (string)

availabilityImpact : NONE (string)

baseScore : 5.3 (number)

baseSeverity : MEDIUM (string)

confidentialityImpact : NONE (string)

integrityImpact : LOW (string)

privilegesRequired : NONE (string)

scope : UNCHANGED (string)

userInteraction : NONE (string)

vectorString : CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N (string)

version : 3.1 (string)

}

exploitabilityScore : 3.9 (number)

impactScore : 1.4 (number)

source : nvd@nist.gov (string)

type : Primary (string)

}

]

}

published : 2022-03-28T18:15:08.423 (string)

references : [ »

0 : { »

source : contact@wpscan.com (string)

tags : [ »

0 : Exploit (string)

1 : Third Party Advisory (string)

]

url : https://wpscan.com/vulnerability/f0f2af29-e21e-4d16-9424-1a49bff7fb86 (string)

}

1 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Exploit (string)

1 : Third Party Advisory (string)

]

url : https://wpscan.com/vulnerability/f0f2af29-e21e-4d16-9424-1a49bff7fb86 (string)

}

]

sourceIdentifier : contact@wpscan.com (string)

vulnStatus : Modified (string)

weaknesses : [ »

0 : { »

description : [ »

0 : { »

lang : en (string)

value : CWE-862 (string)

}

]

source : contact@wpscan.com (string)

type : Secondary (string)

}

1 : { »

description : [ »

0 : { »

lang : en (string)

value : CWE-352 (string)

}

1 : { »

lang : en (string)

value : CWE-862 (string)

}

]

source : nvd@nist.gov (string)

type : Primary (string)

}

]

}

Metrics

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact Low

Availability Impact None

User Interaction None

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact Partial

Availability Impact None

Affected Vendors & Products

Metrics

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact Low

Availability Impact None

User Interaction None

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact Partial

Availability Impact None

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object