CVE-2021-24918: Smash Balloon Social Post Feed < 4.0.1 - Subscriber+ Arbitrary Plugin Settings Update to Stored XSS
First published: Mon Nov 29 2021(Updated: )
The Smash Balloon Social Post Feed WordPress plugin before 4.0.1 did not have any privilege or nonce validation before saving the plugin's setting. As a result, any logged-in user on a vulnerable site could update the settings and store rogue JavaScript on each of its posts and pages.
Credit: contact@wpscan.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Smashballoon Smash Balloon Social Post Feed | <4.0.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID of this issue?
The vulnerability ID of this issue is CVE-2021-24918.
What is the severity of CVE-2021-24918?
CVE-2021-24918 has a severity rating of medium with a score of 5.4.
What is the affected software of CVE-2021-24918?
The affected software of CVE-2021-24918 is the Smash Balloon Social Post Feed WordPress plugin versions up to and excluding 4.0.1.
How can an attacker exploit CVE-2021-24918?
An attacker can exploit CVE-2021-24918 by exploiting the lack of privilege or nonce validation in the plugin's settings, allowing them to store rogue JavaScript on each post and page of the vulnerable site.
Is there a fix for CVE-2021-24918?
Yes, a fix for CVE-2021-24918 is available in version 4.0.1 of the Smash Balloon Social Post Feed WordPress plugin.
- collector/nvd-index
- agent/references
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/title
- agent/last-modified-date
- agent/weakness
- agent/author
- agent/severity
- agent/tags
- agent/description
- agent/event
- agent/first-publish-date
- vendor/smashballoon
- canonical/smashballoon smash balloon social post feed