Vulnerability-Lookup

CNVD-2021-49140

Vulnerability from cnvd - Published: 2021-07-11

Title

WordPress Comments Like Dislike插件重放攻击漏洞

Description

WordPress是WordPress基金会的一套使用PHP语言开发的开源博客平台。 WordPress Comments Like Dislike插件存在重放攻击漏洞。攻击者利用该漏洞可通过重放AJAX请求向任何评论添加数量不限的喜欢/不喜欢评论。

Severity

中

Patch Name

WordPress Comments Like Dislike插件重放攻击漏洞的补丁

Patch Description

WordPress是WordPress基金会的一套使用PHP语言开发的开源博客平台。 WordPress Comments Like Dislike插件存在重放攻击漏洞。攻击者利用该漏洞可通过重放AJAX请求向任何评论添加数量不限的喜欢/不喜欢评论。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description

目前厂商已发布升级补丁以修复漏洞，详情请关注厂商主页： https://wordpress.org/plugins/comments-like-dislike/

Reference

https://nvd.nist.gov/vuln/detail/CVE-2021-24379

Impacted products

Name
WordPress Comments Like Dislike < 1.1.4

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2021-24379"
    }
  },
  "description": "WordPress\u662fWordPress\u57fa\u91d1\u4f1a\u7684\u4e00\u5957\u4f7f\u7528PHP\u8bed\u8a00\u5f00\u53d1\u7684\u5f00\u6e90\u535a\u5ba2\u5e73\u53f0\u3002\n\nWordPress Comments Like Dislike\u63d2\u4ef6\u5b58\u5728\u91cd\u653e\u653b\u51fb\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u5229\u7528\u8be5\u6f0f\u6d1e\u53ef\u901a\u8fc7\u91cd\u653eAJAX\u8bf7\u6c42\u5411\u4efb\u4f55\u8bc4\u8bba\u6dfb\u52a0\u6570\u91cf\u4e0d\u9650\u7684\u559c\u6b22/\u4e0d\u559c\u6b22\u8bc4\u8bba\u3002",
  "formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u53d1\u5e03\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u6f0f\u6d1e\uff0c\u8be6\u60c5\u8bf7\u5173\u6ce8\u5382\u5546\u4e3b\u9875\uff1a\r\nhttps://wordpress.org/plugins/comments-like-dislike/",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2021-49140",
  "openTime": "2021-07-11",
  "patchDescription": "WordPress\u662fWordPress\u57fa\u91d1\u4f1a\u7684\u4e00\u5957\u4f7f\u7528PHP\u8bed\u8a00\u5f00\u53d1\u7684\u5f00\u6e90\u535a\u5ba2\u5e73\u53f0\u3002\r\n\r\nWordPress Comments Like Dislike\u63d2\u4ef6\u5b58\u5728\u91cd\u653e\u653b\u51fb\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u5229\u7528\u8be5\u6f0f\u6d1e\u53ef\u901a\u8fc7\u91cd\u653eAJAX\u8bf7\u6c42\u5411\u4efb\u4f55\u8bc4\u8bba\u6dfb\u52a0\u6570\u91cf\u4e0d\u9650\u7684\u559c\u6b22/\u4e0d\u559c\u6b22\u8bc4\u8bba\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "WordPress Comments Like Dislike\u63d2\u4ef6\u91cd\u653e\u653b\u51fb\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": "WordPress Comments Like Dislike \u003c 1.1.4"
  },
  "referenceLink": "https://nvd.nist.gov/vuln/detail/CVE-2021-24379",
  "serverity": "\u4e2d",
  "submitTime": "2021-06-23",
  "title": "WordPress Comments Like Dislike\u63d2\u4ef6\u91cd\u653e\u653b\u51fb\u6f0f\u6d1e"
}

CVE-2021-24379 (GCVE-0-2021-24379)

Vulnerability from cvelistv5 – Published: 2021-06-21 19:18 – Updated: 2024-08-03 19:28

Title

Comments Like Dislike < 1.1.4 - Add Like/Dislike Bypass

Summary

The Comments Like Dislike WordPress plugin before 1.1.4 allows users to like/dislike posted comments, however does not prevent them from replaying the AJAX request to add a like. This allows any user (even unauthenticated) to add unlimited like/dislike to any comment. The plugin appears to have some Restriction modes, such as Cookie Restriction, IP Restrictions, Logged In User Restriction, however, they do not prevent such attack as they only check client side

Severity ?

No CVSS data available.

CWE

CWE-863 - Incorrect Authorization

Assigner

WPScan

References

URL

Tags

https://wpscan.com/vulnerability/aae7a889-195c-45…

x_refsource_CONFIRM

Impacted products

	Vendor	Product	Version
	Unknown	Comments Like Dislike	Affected: 1.1.4 , < 1.1.4 (custom)

Credits

Phu Tran from techlabcorp.com

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T19:28:23.786Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://wpscan.com/vulnerability/aae7a889-195c-45a3-bbe4-e6d4cd2d7fd9"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Comments Like Dislike",
          "vendor": "Unknown",
          "versions": [
            {
              "lessThan": "1.1.4",
              "status": "affected",
              "version": "1.1.4",
              "versionType": "custom"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "value": "Phu Tran from techlabcorp.com"
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "The Comments Like Dislike WordPress plugin before 1.1.4 allows users to like/dislike posted comments, however does not prevent them from replaying the AJAX request to add a like. This allows any user (even unauthenticated) to add unlimited like/dislike to any comment. The plugin appears to have some Restriction modes, such as Cookie Restriction, IP Restrictions, Logged In User Restriction, however, they do not prevent such attack as they only check client side"
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-863",
              "description": "CWE-863 Incorrect Authorization",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2021-06-21T19:18:25.000Z",
        "orgId": "1bfdd5d7-9bf6-4a53-96ea-42e2716d7a81",
        "shortName": "WPScan"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://wpscan.com/vulnerability/aae7a889-195c-45a3-bbe4-e6d4cd2d7fd9"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "title": "Comments Like Dislike \u003c 1.1.4 - Add Like/Dislike Bypass",
      "x_generator": "WPScan CVE Generator",
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "contact@wpscan.com",
          "ID": "CVE-2021-24379",
          "STATE": "PUBLIC",
          "TITLE": "Comments Like Dislike \u003c 1.1.4 - Add Like/Dislike Bypass"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "Comments Like Dislike",
                      "version": {
                        "version_data": [
                          {
                            "version_affected": "\u003c",
                            "version_name": "1.1.4",
                            "version_value": "1.1.4"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Unknown"
              }
            ]
          }
        },
        "credit": [
          {
            "lang": "eng",
            "value": "Phu Tran from techlabcorp.com"
          }
        ],
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "The Comments Like Dislike WordPress plugin before 1.1.4 allows users to like/dislike posted comments, however does not prevent them from replaying the AJAX request to add a like. This allows any user (even unauthenticated) to add unlimited like/dislike to any comment. The plugin appears to have some Restriction modes, such as Cookie Restriction, IP Restrictions, Logged In User Restriction, however, they do not prevent such attack as they only check client side"
            }
          ]
        },
        "generator": "WPScan CVE Generator",
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "CWE-863 Incorrect Authorization"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://wpscan.com/vulnerability/aae7a889-195c-45a3-bbe4-e6d4cd2d7fd9",
              "refsource": "CONFIRM",
              "url": "https://wpscan.com/vulnerability/aae7a889-195c-45a3-bbe4-e6d4cd2d7fd9"
            }
          ]
        },
        "source": {
          "discovery": "UNKNOWN"
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "1bfdd5d7-9bf6-4a53-96ea-42e2716d7a81",
    "assignerShortName": "WPScan",
    "cveId": "CVE-2021-24379",
    "datePublished": "2021-06-21T19:18:25.000Z",
    "dateReserved": "2021-01-14T00:00:00.000Z",
    "dateUpdated": "2024-08-03T19:28:23.786Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CNVD-2021-49140

CVE-2021-24379 (GCVE-0-2021-24379)

Tags

Sightings

Nomenclature