CVE-2021-25085
published 2022-02-01CVE-2021-25085: The WOOF WordPress plugin before 1.2.6.3 does not sanitise and escape the woof_redraw_elements before outputing back in an admin page, leading to a Reflected…
PriorityP335medium6.1CVSS 3.1
AVNACLPRNUIRSCCLILAN
EXPLOIT
EPSS
1.65%
73.6th percentile
The WOOF WordPress plugin before 1.2.6.3 does not sanitise and escape the woof_redraw_elements before outputing back in an admin page, leading to a Reflected Cross-Site Scripting
Affected
5 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| msrc | qemu-img-4.2.0-29.cm1.aarch64.rpm_on_cbl_mariner_1.0_arm | — | — |
| msrc | qemu-img-4.2.0-29.cm1.x86_64.rpm_on_cbl_mariner_1.0_x64 | — | — |
| msrc | qemu-kvm-4.2.0-29.cm1.aarch64.rpm_on_cbl_mariner_1.0_arm | — | — |
| msrc | qemu-kvm-4.2.0-29.cm1.x86_64.rpm_on_cbl_mariner_1.0_x64 | — | — |
| pluginus | woocommerce_products_filter | < 1.2.6.3 | 1.2.6.3 |
CVSS provenance
nvdv3.16.1MEDIUMCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
nvdv2.04.3MEDIUMAV:N/AC:M/Au:N/C:N/I:P/A:N
vendor_redhat6.3MEDIUM
vendor_msrc5.7MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-qrxg-rv92-28fv: The WOOF WordPress plugin before 1
ghsa_unreviewed·2022-02-02
CVE-2021-25085 [MEDIUM] CWE-79 GHSA-qrxg-rv92-28fv: The WOOF WordPress plugin before 1
The WOOF WordPress plugin before 1.2.6.3 does not sanitise and escape the woof_redraw_elements before outputing back in an admin page, leading to a Reflected Cross-Site Scripting
Microsoft
The patch for CVE-2020-17380/CVE-2020-25085 was found to be ineffective thus making QEMU vulnerable to the out-of-bounds read/write access issues previously found in the SDHCI controller emulation cod
vendor_msrc·2021-03-09·CVSS 5.7
CVE-2021-3409 [MEDIUM] CWE-119 The patch for CVE-2020-17380/CVE-2020-25085 was found to be ineffective thus making QEMU vulnerable to the out-of-bounds read/write access issues previously found in the SDHCI controller emulation cod
The patch for CVE-2020-17380/CVE-2020-25085 was found to be ineffective thus making QEMU vulnerable to the out-of-bounds read/write access issues previously found in the SDHCI controller emulation code. This flaw allows a malicious privileged guest to crash the QEMU process on the host resulting in a denial of service or potential code execution. QEMU up to (including) 5.2.0 is affected by this.
FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability?
One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is composed. Microsoft is committ
Red Hat
QEMU: sdhci: incomplete fix for CVE-2020-17380/CVE-2020-25085
vendor_redhat·2020-12-28·CVSS 6.3
CVE-2021-3409 [MEDIUM] CWE-119 QEMU: sdhci: incomplete fix for CVE-2020-17380/CVE-2020-25085
QEMU: sdhci: incomplete fix for CVE-2020-17380/CVE-2020-25085
The patch for CVE-2020-17380/CVE-2020-25085 was found to be ineffective, thus making QEMU vulnerable to the out-of-bounds read/write access issues previously found in the SDHCI controller emulation code. This flaw allows a malicious privileged guest to crash the QEMU process on the host, resulting in a denial of service or potential code execution. QEMU up to (including) 5.2.0 is affected by this.
The patch for CVE-2020-17380 and CVE-2020-25085, both involving a heap buffer overflow in the SDHCI controller emulation code of QEMU, was found to be incomplete. A malicious privileged guest could reproduce the same issues with specially crafted input, inducing a bogus transfer and subsequent out-of-bounds read/write access in sdhci
No detection rules found.
Nuclei
WOOF WordPress plugin - Cross-Site Scripting
nuclei·CVSS 6.1
CVE-2021-25085 [MEDIUM] WOOF WordPress plugin - Cross-Site Scripting
WOOF WordPress plugin - Cross-Site Scripting
The WOOF WordPress plugin does not sanitize or escape the woof_redraw_elements parameter before reflecting it back in an admin page, leading to a reflected cross-site scripting.
Template:
id: CVE-2021-25085
info:
name: WOOF WordPress plugin - Cross-Site Scripting
author: Maximus Decimus
severity: medium
description: |
The WOOF WordPress plugin does not sanitize or escape the woof_redraw_elements parameter before reflecting it back in an admin page, leading to a reflected cross-site scripting.
impact: |
Successful exploitation of this vulnerability could allow an attacker to inject malicious scripts into web pages viewed by users, leading to potential data theft, session hijacking, or defacement of the affected website.
remediation: |
Update
No writeups or analysis indexed.
2022-02-01
Published