CVE-2021-24509

CWE-79Cross-site Scripting (XSS)3 documents3 sources
Severity
5.4MEDIUM
EPSS
0.2%
top 62.84%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Unknown Page View CountA3rev Page View Count
Timeline
PublishedAug 9
Latest updateMay 24

Description

The Page View Count WordPress plugin before 2.4.9 does not escape the postid parameter of pvc_stats shortcode, allowing users with a role as low as Contributor to perform Stored XSS attacks. A post made by a contributor would still have to be approved by an admin to have the XSS triggered in the frontend, however, higher privilege users, such as editor could exploit this without the need of approval, and even when the blog disallows the unfiltered_html capability.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:NExploitability: 2.3 | Impact: 2.7

Affected Packages2 packages

CVEListV5unknown/page_view_count2.4.92.4.9

🔴Vulnerability Details

2
GHSA
GHSA-qjp7-r5pf-4fvh: The Page View Count WordPress plugin before 22022-05-24
CVEList
Page View Counts < 2.4.9 - Contributor+ Stored XSS2021-08-09
CVE-2021-24509 (MEDIUM CVSS 5.4) | The Page View Count WordPress plugi | cvebase.io