WordPress before 5.8 lacks support for the Update URI plugin header. This makes it easier for remote attackers to execute arbitrary code via a supply-chain attack against WordPress installations that use any plugin for which the slug satisfies the naming constraints of the WordPress.org Plugin Directory but is not yet present in that directory.
References
Link | Resource |
---|---|
https://make.wordpress.org/core/2021/06/29/introducing-update-uri-plugin-header-in-wordpress-5-8/ | Release Notes Vendor Advisory |
https://vavkamil.cz/2021/11/25/wordpress-plugin-confusion-update-can-get-you-pwned/ | Exploit Third Party Advisory |
Configurations
History
30 Nov 2021, 07:16
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : 7.5
v3 : 9.8 |
CPE | cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:* | |
CWE | NVD-CWE-Other | |
References | (MISC) https://vavkamil.cz/2021/11/25/wordpress-plugin-confusion-update-can-get-you-pwned/ - Exploit, Third Party Advisory | |
References | (MISC) https://make.wordpress.org/core/2021/06/29/introducing-update-uri-plugin-header-in-wordpress-5-8/ - Release Notes, Vendor Advisory |
25 Nov 2021, 15:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2021-11-25 15:15
Updated : 2023-12-10 14:09
NVD link : CVE-2021-44223
Mitre link : CVE-2021-44223
CVE.ORG link : CVE-2021-44223
JSON object : View
Products Affected
wordpress
- wordpress
CWE