WordPress Plugin Vulnerabilities

WP HTML Mail < 3.0.8 - CSRF to XSS

Description

The plugin did not have any CSRF in place when saving its options, which could allow attacker to make a logged in administrator change them. Due to the lack of sanitisation in some of them, Stored XSS could also be achieved

Affects Plugins

Plugin icon
wp-html-mail
Fixed in 3.0.8

References

CVE
CVE-2021-20779
URL
https://jvn.jp/en/jp/JVN42880365/

Classification

Type
CSRF
OWASP top 10
A2: Broken Authentication and Session Management
CWE
CWE-352
CVSS
4.3 (medium)

Miscellaneous

Original Researcher
Konan Nagashima
Verified
Yes
WPVDB ID
477712a3-41ee-45a1-91ee-6e40689cc910

Timeline

Publicly Published
2021-07-06 (about 4 years ago)
Added
2021-07-06 (about 4 years ago)
Last Updated
2021-08-10 (about 4 years ago)

Other

Published
Title
Published
2022-02-22
Title
WP Google Map < 4.2.4 - Marker Category/Map Deletion via CSRF
Published
2024-11-28
Title
Out Of Stock Badge <= 1.3.1 - Cross-Site Request Forgery to Stored Cross-site Scripting
Published
2024-03-19
Title
Woomotiv < 3.5.0 - Review Count Reset via CSRF
Published
2024-05-24
Title
WP Prayer II < 2.4.8 - Email Settings Update via CSRF
Published
2023-10-04
Title
WooCommerce Dynamic Pricing and Discount Rules < 2.4.1 - CSRF