.. / CVE-2021-24666

Exploit for WordPress Podlove Podcast Publisher <3.5.6 - SQL Injection (CVE-2021-24666)

Description:

WordPress Podlove Podcast Publisher plugin before 3.5.6 is susceptible to SQL injection. The Social & Donations module, not activated by default, adds the REST route /services/contributor/(?P[\d]+) and takes id and category parameters as arguments. Both parameters can be exploited, thereby potentially enabling an attacker to obtain sensitive information, modify data, and/or execute unauthorized administrative operations.

Nuclei Template

View the template here CVE-2021-24666.yaml

Validate with Nuclei

echo "$URL" | nuclei -t ~/nuclei-templates/http/cves/2021/CVE-2021-24666.yaml

References:

https://nvd.nist.gov/vuln/detail/CVE-2021-24666
https://wordpress.org/plugins/podlove-podcasting-plugin-for-wordpress/
https://github.com/podlove/podlove-publisher/commit/aa8a343a2e2333b34a422f801adee09b020c6d76
https://wpscan.com/vulnerability/fb4d7988-60ff-4862-96a1-80b1866336fe

.. / CVE-2021-24666 if(localStorage["style"]=="true"){ document.getElementById('pagestyle').setAttribute('href','/assets/styleDark.css'); document.querySelector('input[type="checkbox"]').checked = true }

Exploit for WordPress Podlove Podcast Publisher <3.5.6 - SQL Injection (CVE-2021-24666)

Description:

Nuclei Template

Validate with Nuclei

.. / CVE-2021-24666