WordPress Plugin Vulnerabilities

OptinMonster < 2.6.5 - Unprotected REST-API Endpoints

Description

OptinMonster was missing appropriate capability checks on several REST-API endpoints which made it possible for unauthenticated attackers, and in some instances authenticated with low privileges, to perform unauthorized actions, as well as access sensitive information such as the app.optinmonster.com API key

Affects Plugins

Plugin icon
optinmonster
Fixed in 2.6.5

References

CVE
CVE-2021-39341
URL
https://www.wordfence.com/blog/2021/10/1000000-sites-affected-by-optinmonster-vulnerabilities/

Classification

Type
SENSITIVE DATA DISCLOSURE
OWASP top 10
A3: Sensitive Data Exposure
CWE
CWE-200
CVSS
7.2 (high)

Miscellaneous

Original Researcher
Chloe Chamberland
Submitter
Chloe Chamberland
Submitter website
https://wordfence.com
Submitter twitter
infosecchloe
Verified
Yes
WPVDB ID
b02225c6-47c1-4f0b-83c7-89874046d784

Timeline

Publicly Published
2021-10-27 (about 4 years ago)
Added
2021-10-27 (about 4 years ago)
Last Updated
2022-04-08 (about 3 years ago)

Other

Published
Title
Published
2024-06-19
Title
phpinfo() WP < 6.0 - Unauthenticated Information Exposure
Published
2025-12-06
Title
REHub Framework < 19.9.9.4 - Authenticated (Subscriber+) Information Exposure
Published
2024-02-26
Title
WooCommerce Coupon Popup, SmartBar, Slide In | MyShopKit <= 1.0.9 - Unauthenticated Sensitive Information Exposure
Published
2024-03-21
Title
LiquidPoll – Polls, Surveys, NPS and Feedback Reviews < 3.3.77 - Information Exposure
Published
2024-05-03
Title
SEOPress < 7.7 - Information Exposure