CVE-2021-24641 - CERT CVE

  1. CVE-2021-24641

ID CVE-2021-24641
Sažetak The Images to WebP WordPress plugin before 1.9 does not have CSRF checks in place when performing some administrative actions, which could result in modification of plugin settings, Denial-of-Service, as well as arbitrary image conversion
Reference
CVSS
Base: 5.8
Impact: 4.9
Exploitability:8.6
Pristup
VektorSloženostAutentikacija
NETWORK MEDIUM NONE
Impact
PovjerljivostCjelovitostDostupnost
NONE PARTIAL PARTIAL
CVSS vektor AV:N/AC:M/Au:N/C:N/I:P/A:P
Zadnje važnije ažuriranje 24-11-2021 - 15:25
Objavljeno 23-11-2021 - 20:15