CVE-2021-24823
published 2022-02-28CVE-2021-24823: The Support Board WordPress plugin before 3.3.6 does not have any CSRF checks in actions handled by the include/ajax.php file, which could allow attackers to…
PriorityP336high8.1CVSS 3.1
AVNACLPRNUIRSUCNIHAH
EPSS
0.54%
41.4th percentile
The Support Board WordPress plugin before 3.3.6 does not have any CSRF checks in actions handled by the include/ajax.php file, which could allow attackers to make logged in users do unwanted actions. For example, make an admin delete arbitrary files
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| schiocco | support_board | < 3.3.6 | 3.3.6 |
CVSS provenance
nvdv3.18.1HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H
nvdv2.04.9MEDIUMAV:N/AC:M/Au:S/C:N/I:P/A:P
ghsa5.5MEDIUM
vendor_redhat6.2MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
Local Information Disclosure Vulnerability in io.netty:netty-codec-http
ghsa·2022-05-10·CVSS 5.5
CVE-2022-24823 [MEDIUM] CWE-378 Local Information Disclosure Vulnerability in io.netty:netty-codec-http
Local Information Disclosure Vulnerability in io.netty:netty-codec-http
### Description ###
[GHSA-5mcr-gq6c-3hq2](https://github.com/netty/netty/security/advisories/GHSA-5mcr-gq6c-3hq2) (CVE-2021-21290) contains an insufficient fix for the vulnerability identified.
### Impact ###
When netty's multipart decoders are used local information disclosure can occur via the local system temporary directory if temporary storing uploads on the disk is enabled.
This only impacts applications running on Java version 6 and lower. Additionally, this vulnerability impacts code running on Unix-like systems, and very old versions of Mac OSX and Windows as they all share the system temporary directory between all users.
### Vulnerability Details ###
To fix the vulnerability the code was changed to the
GHSA
GHSA-v252-c336-2rvr: The Support Board WordPress plugin before 3
ghsa_unreviewed·2022-03-01
CVE-2021-24823 [HIGH] CWE-352 GHSA-v252-c336-2rvr: The Support Board WordPress plugin before 3
The Support Board WordPress plugin before 3.3.6 does not have any CSRF checks in actions handled by the include/ajax.php file, which could allow attackers to make logged in users do unwanted actions. For example, make an admin delete arbitrary files
Red Hat
netty: world readable temporary file containing sensitive data
vendor_redhat·2022-05-06·CVSS 6.2
CVE-2022-24823 [MEDIUM] CWE-379 netty: world readable temporary file containing sensitive data
netty: world readable temporary file containing sensitive data
Netty is an open-source, asynchronous event-driven network application framework. The package `io.netty:netty-codec-http` prior to version 4.1.77.Final contains an insufficient fix for CVE-2021-21290. When Netty's multipart decoders are used local information disclosure can occur via the local system temporary directory if temporary storing uploads on the disk is enabled. This only impacts applications running on Java version 6 and lower. Additionally, this vulnerability impacts code running on Unix-like systems, and very old versions of Mac OSX and Windows as they all share the system temporary directory between all users. Version 4.1.77.Final contains a patch for this vulnerability. As a workaround, specify one's own `java.i
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
https://noob3xploiter.medium.com/support-board-3-3-4-arbitrary-file-deletion-to-remote-code-execution-da4c45b45c83https://wpscan.com/vulnerability/1bdebd9e-a7f2-4f55-b5b0-185eb619ebafhttps://noob3xploiter.medium.com/support-board-3-3-4-arbitrary-file-deletion-to-remote-code-execution-da4c45b45c83https://wpscan.com/vulnerability/1bdebd9e-a7f2-4f55-b5b0-185eb619ebaf
2022-02-28
Published