cnvd - cnvd-2021-36053

CNVD-2021-36053

Vulnerability from cnvd - Published: 2021-05-20

Title

WordPress WPBakery Page Builder Clipboard Plugin存在未明漏洞

Description

WordPress是WordPress（Wordpress）基金会的一套使用PHP语言开发的博客平台。该平台支持在PHP和MySQL的服务器上架设个人博客网站。 WordPress WPBakery Page Builder (Visual Composer) Clipboard Plugin 4.5.8之前版本存在安全漏洞。该漏洞源于程序未执行功能检查或正确过滤。攻击者可利用该漏洞更新许可证选项（密钥，电子邮件）。

Severity

中

Patch Name

WordPress WPBakery Page Builder Clipboard Plugin存在未明漏洞的补丁

Patch Description

Formal description

目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载： https://wpscan.com/vulnerability/354b98d8-46a1-4189-b347-198701ea59b9

Reference

https://nvd.nist.gov/vuln/detail/CVE-2021-24244

Impacted products

Name
WordPress WPBakery Page Builder Clipboard Plugin <4.5.8

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2021-24244",
      "cveUrl": "https://nvd.nist.gov/vuln/detail/CVE-2021-24244"
    }
  },
  "description": "WordPress\u662fWordPress\uff08Wordpress\uff09\u57fa\u91d1\u4f1a\u7684\u4e00\u5957\u4f7f\u7528PHP\u8bed\u8a00\u5f00\u53d1\u7684\u535a\u5ba2\u5e73\u53f0\u3002\u8be5\u5e73\u53f0\u652f\u6301\u5728PHP\u548cMySQL\u7684\u670d\u52a1\u5668\u4e0a\u67b6\u8bbe\u4e2a\u4eba\u535a\u5ba2\u7f51\u7ad9\u3002\n\nWordPress WPBakery Page Builder (Visual Composer) Clipboard Plugin 4.5.8\u4e4b\u524d\u7248\u672c\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\u3002\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u7a0b\u5e8f\u672a\u6267\u884c\u529f\u80fd\u68c0\u67e5\u6216\u6b63\u786e\u8fc7\u6ee4\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u66f4\u65b0\u8bb8\u53ef\u8bc1\u9009\u9879\uff08\u5bc6\u94a5\uff0c\u7535\u5b50\u90ae\u4ef6\uff09\u3002",
  "formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u7ecf\u53d1\u5e03\u4e86\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u8fd9\u4e2a\u5b89\u5168\u95ee\u9898\uff0c\u8bf7\u5230\u5382\u5546\u7684\u4e3b\u9875\u4e0b\u8f7d\uff1a \r\nhttps://wpscan.com/vulnerability/354b98d8-46a1-4189-b347-198701ea59b9",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2021-36053",
  "openTime": "2021-05-20",
  "patchDescription": "WordPress\u662fWordPress\uff08Wordpress\uff09\u57fa\u91d1\u4f1a\u7684\u4e00\u5957\u4f7f\u7528PHP\u8bed\u8a00\u5f00\u53d1\u7684\u535a\u5ba2\u5e73\u53f0\u3002\u8be5\u5e73\u53f0\u652f\u6301\u5728PHP\u548cMySQL\u7684\u670d\u52a1\u5668\u4e0a\u67b6\u8bbe\u4e2a\u4eba\u535a\u5ba2\u7f51\u7ad9\u3002\r\n\r\nWordPress WPBakery Page Builder (Visual Composer) Clipboard Plugin 4.5.8\u4e4b\u524d\u7248\u672c\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\u3002\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u7a0b\u5e8f\u672a\u6267\u884c\u529f\u80fd\u68c0\u67e5\u6216\u6b63\u786e\u8fc7\u6ee4\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u66f4\u65b0\u8bb8\u53ef\u8bc1\u9009\u9879\uff08\u5bc6\u94a5\uff0c\u7535\u5b50\u90ae\u4ef6\uff09\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "WordPress WPBakery Page Builder Clipboard Plugin\u5b58\u5728\u672a\u660e\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": "WordPress WPBakery Page Builder Clipboard Plugin \u003c4.5.8"
  },
  "referenceLink": "https://nvd.nist.gov/vuln/detail/CVE-2021-24244",
  "serverity": "\u4e2d",
  "submitTime": "2021-05-14",
  "title": "WordPress WPBakery Page Builder Clipboard Plugin\u5b58\u5728\u672a\u660e\u6f0f\u6d1e"
}

CVE-2021-24244 (GCVE-0-2021-24244)

Vulnerability from cvelistv5 – Published: 2021-05-05 18:39 – Updated: 2024-08-03 19:21

Title

WPBakery Page Builder Clipboard < 4.5.8 - Unauthorised Arbitrary License Options Update

Summary

An AJAX action registered by the WPBakery Page Builder (Visual Composer) Clipboard WordPress plugin before 4.5.8 did not have capability checks, allowing low privilege users, such as subscribers, to update the license options (key, email).

Severity ?

No CVSS data available.

CWE

CWE-863 - Incorrect Authorization

Assigner

WPScan

References

URL

Tags

	https://codecanyon.net/item/visual-composer-clipb…	x_refsource_MISC
	https://wpscan.com/vulnerability/354b98d8-46a1-41…	x_refsource_CONFIRM

Impacted products

	Vendor	Product	Version
	bitorbit	WPBakery Page Builder (Visual Composer) Clipboard	Affected: 4.5.0 , < 4.5.0* (custom) Affected: 4.5.8 , < 4.5.8 (custom)

Credits

Charles Strader Sweethill

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T19:21:18.915Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://codecanyon.net/item/visual-composer-clipboard/8897711"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://wpscan.com/vulnerability/354b98d8-46a1-4189-b347-198701ea59b9"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "WPBakery Page Builder (Visual Composer) Clipboard",
          "vendor": "bitorbit",
          "versions": [
            {
              "lessThan": "4.5.0*",
              "status": "affected",
              "version": "4.5.0",
              "versionType": "custom"
            },
            {
              "lessThan": "4.5.8",
              "status": "affected",
              "version": "4.5.8",
              "versionType": "custom"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "value": "Charles Strader Sweethill"
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "An AJAX action registered by the WPBakery Page Builder (Visual Composer) Clipboard WordPress plugin before 4.5.8 did not have capability checks, allowing low privilege users, such as subscribers, to update the license options (key, email)."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-863",
              "description": "CWE-863 Incorrect Authorization",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2021-05-05T18:39:42",
        "orgId": "1bfdd5d7-9bf6-4a53-96ea-42e2716d7a81",
        "shortName": "WPScan"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://codecanyon.net/item/visual-composer-clipboard/8897711"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://wpscan.com/vulnerability/354b98d8-46a1-4189-b347-198701ea59b9"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "title": "WPBakery Page Builder Clipboard \u003c 4.5.8 - Unauthorised Arbitrary License Options Update",
      "x_generator": "WPScan CVE Generator",
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "contact@wpscan.com",
          "ID": "CVE-2021-24244",
          "STATE": "PUBLIC",
          "TITLE": "WPBakery Page Builder Clipboard \u003c 4.5.8 - Unauthorised Arbitrary License Options Update"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "WPBakery Page Builder (Visual Composer) Clipboard",
                      "version": {
                        "version_data": [
                          {
                            "version_affected": "\u003e=",
                            "version_name": "4.5.0",
                            "version_value": "4.5.0"
                          },
                          {
                            "version_affected": "\u003c",
                            "version_name": "4.5.8",
                            "version_value": "4.5.8"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "bitorbit"
              }
            ]
          }
        },
        "credit": [
          {
            "lang": "eng",
            "value": "Charles Strader Sweethill"
          }
        ],
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "An AJAX action registered by the WPBakery Page Builder (Visual Composer) Clipboard WordPress plugin before 4.5.8 did not have capability checks, allowing low privilege users, such as subscribers, to update the license options (key, email)."
            }
          ]
        },
        "generator": "WPScan CVE Generator",
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "CWE-863 Incorrect Authorization"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://codecanyon.net/item/visual-composer-clipboard/8897711",
              "refsource": "MISC",
              "url": "https://codecanyon.net/item/visual-composer-clipboard/8897711"
            },
            {
              "name": "https://wpscan.com/vulnerability/354b98d8-46a1-4189-b347-198701ea59b9",
              "refsource": "CONFIRM",
              "url": "https://wpscan.com/vulnerability/354b98d8-46a1-4189-b347-198701ea59b9"
            }
          ]
        },
        "source": {
          "discovery": "UNKNOWN"
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "1bfdd5d7-9bf6-4a53-96ea-42e2716d7a81",
    "assignerShortName": "WPScan",
    "cveId": "CVE-2021-24244",
    "datePublished": "2021-05-05T18:39:42",
    "dateReserved": "2021-01-14T00:00:00",
    "dateUpdated": "2024-08-03T19:21:18.915Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CNVD-2021-36053

CVE-2021-24244 (GCVE-0-2021-24244)

Tags

Sightings

Nomenclature