CVE-2021-4342

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2021-4342
Rejected reason: CVE split into individual CVE IDs for each software record.
CVSS

No CVSS.

References

No reference.

Configurations

No configuration.

History

07 Nov 2023, 03:40

Type Values Removed Values Added
Summary ** REJECT ** CVE split into individual CVE IDs for each software record. Rejected reason: CVE split into individual CVE IDs for each software record.

11 Jul 2023, 20:15

Type Values Removed Values Added
References
  • {'url': 'https://blog.nintechnet.com/multiple-wordpress-plugins-fixed-csrf-vulnerabilities-part-4/', 'name': 'https://blog.nintechnet.com/multiple-wordpress-plugins-fixed-csrf-vulnerabilities-part-4/', 'tags': ['Exploit', 'Third Party Advisory'], 'refsource': 'MISC'}
  • {'url': 'https://blog.nintechnet.com/multiple-wordpress-plugins-fixed-csrf-vulnerabilities-part-1/', 'name': 'https://blog.nintechnet.com/multiple-wordpress-plugins-fixed-csrf-vulnerabilities-part-1/', 'tags': ['Exploit', 'Third Party Advisory'], 'refsource': 'MISC'}
  • {'url': 'https://blog.nintechnet.com/more-wordpress-plugins-and-themes-vulnerable-to-csrf-attacks/', 'name': 'https://blog.nintechnet.com/more-wordpress-plugins-and-themes-vulnerable-to-csrf-attacks/', 'tags': ['Exploit', 'Third Party Advisory'], 'refsource': 'MISC'}
  • {'url': 'https://blog.nintechnet.com/25-wordpress-plugins-vulnerable-to-csrf-attacks/', 'name': 'https://blog.nintechnet.com/25-wordpress-plugins-vulnerable-to-csrf-attacks/', 'tags': ['Exploit', 'Third Party Advisory'], 'refsource': 'MISC'}
  • {'url': 'https://www.wordfence.com/threat-intel/vulnerabilities/id/1b3d9251-9824-4bd0-aa2f-5a967ef01de3?source=cve', 'name': 'https://www.wordfence.com/threat-intel/vulnerabilities/id/1b3d9251-9824-4bd0-aa2f-5a967ef01de3?source=cve', 'tags': ['Third Party Advisory'], 'refsource': 'MISC'}
  • {'url': 'https://blog.nintechnet.com/multiple-wordpress-plugins-fixed-csrf-vulnerabilities-part-5/', 'name': 'https://blog.nintechnet.com/multiple-wordpress-plugins-fixed-csrf-vulnerabilities-part-5/', 'tags': ['Exploit', 'Third Party Advisory'], 'refsource': 'MISC'}
  • {'url': 'https://blog.nintechnet.com/multiple-wordpress-plugins-fixed-csrf-vulnerabilities-part-2/', 'name': 'https://blog.nintechnet.com/multiple-wordpress-plugins-fixed-csrf-vulnerabilities-part-2/', 'tags': ['Exploit', 'Third Party Advisory'], 'refsource': 'MISC'}
  • {'url': 'https://blog.nintechnet.com/multiple-wordpress-plugins-fixed-csrf-vulnerabilities-part-3/', 'name': 'https://blog.nintechnet.com/multiple-wordpress-plugins-fixed-csrf-vulnerabilities-part-3/', 'tags': ['Exploit', 'Third Party Advisory'], 'refsource': 'MISC'}
CWE CWE-352
CVSS v2 : unknown
v3 : 8.8 		v2 : unknown
v3 : unknown
Summary Over 70 plugins and themes were vulnerable to Cross-Site Request Forgery due to improperly implemented nonce protection that could be bypassed. ** REJECT ** CVE split into individual CVE IDs for each software record.
CPE cpe:2.3:a:wmpudev:defender_security:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:analogwp:style_kits:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:goldplugins:locations:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:cartflows:funnel_builder:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:wedevs:dokan:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:webberzone:top_10:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:inoplugs:wp-backgrounds_lite:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:wpopal:opal_estate:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:quantumcloud:slider_hero:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:thimpress:wp_hotel_booking:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:cm-wp:woody_code_snippets:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:c7style:contact_form_7_style:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:designwall:dw_question_\&_answer:*:*:*:*:pro:wordpress:*:*
cpe:2.3:a:amministrazione_trasparente_project:amministrazione_trasparente:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:multiple_roles_project:multiple_roles:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:themeisle:rss_aggregator_by_feedzy:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:jesseeproductions:coupon_creator:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:goldplugins:custom_banners:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:wp-mpdf_project:wp-mpdf:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:menu_swapper_project:menu_swapper:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:wedevs:wp_erp:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:slickremix:feed_them_social:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:coolplugins:process_steps_template_designer:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:wpgogo:custom_field_template:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:exportfeed:woocommerce_etsy_integration:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:graphpaperpress:sell_media:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:qtranslate_slug_project:qtranslate_slug:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:ashstonestudios:advanced_popups:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:wpswings:ultimate_gift_cards_for_woocommerce:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:presscustomizr:hueman:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:wpexperts:post_smtp_mailer:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:10web:10webanalytics:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:ewww:image_optimizer:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:rays_grid_project:rays_grid:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:oceanwp:ocean_extra:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:wpexpertdeveloper:wp_private_content_plus:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:multivendorx:multivendorx:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:ashstonestudios:absolute_reviews:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:coolplugins:cool_timeline:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:incsub:forminator:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:implecode:product_catalog_simple:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:rucy_project:rucy:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:goprayer:wp_prayer:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:websitescanner:remove_schema:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:vuukle:vuukle_comments\,_reactions\,_share_bar\,_revenue:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:brainstormforce:import_\/_export_customizer_settings:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:wedevs:wp_project_manager:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:villatheme:abandoned_cart_recovery_for_woocommerce:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:webberzone:better_search:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:edwiser:bridge:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:presscustomizr:customizr:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:paidmembershipspro:paid_memberships_pro:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:implecode:ecommerce_product_catalog:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:brainstormforce:lightweight_sidebar_manager:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:wpconcern:coming_soon_\&_maintenance_mode_page:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:10up:elasticpress:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:eventespresso:event_espresso:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:wpdeveloper:notificationx:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:goldplugins:easy_testimonials:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:wpeasypay:wp_easypay:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:flippercode:photo_gallery_-_image_gallery:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:radio_buttons_for_taxonomies_project:radio_buttons_for_taxonomies:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:tychesoftwares:abandoned_cart_lite_for_woocommerce:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:goldplugins:staff_directory_plugin:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:flippercode:wp_security_question:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:sunshinephotocart:sunshine_photo_cart:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:flippercode:custom_css-js-php:*:*:*:*:*:wordpress:*:*

22 Jun 2023, 16:10

Type Values Removed Values Added
References (MISC) https://blog.nintechnet.com/multiple-wordpress-plugins-fixed-csrf-vulnerabilities-part-4/ - (MISC) https://blog.nintechnet.com/multiple-wordpress-plugins-fixed-csrf-vulnerabilities-part-4/ - Exploit, Third Party Advisory
References (MISC) https://blog.nintechnet.com/multiple-wordpress-plugins-fixed-csrf-vulnerabilities-part-1/ - (MISC) https://blog.nintechnet.com/multiple-wordpress-plugins-fixed-csrf-vulnerabilities-part-1/ - Exploit, Third Party Advisory
References (MISC) https://blog.nintechnet.com/more-wordpress-plugins-and-themes-vulnerable-to-csrf-attacks/ - (MISC) https://blog.nintechnet.com/more-wordpress-plugins-and-themes-vulnerable-to-csrf-attacks/ - Exploit, Third Party Advisory
References (MISC) https://blog.nintechnet.com/25-wordpress-plugins-vulnerable-to-csrf-attacks/ - (MISC) https://blog.nintechnet.com/25-wordpress-plugins-vulnerable-to-csrf-attacks/ - Exploit, Third Party Advisory
References (MISC) https://www.wordfence.com/threat-intel/vulnerabilities/id/1b3d9251-9824-4bd0-aa2f-5a967ef01de3?source=cve - (MISC) https://www.wordfence.com/threat-intel/vulnerabilities/id/1b3d9251-9824-4bd0-aa2f-5a967ef01de3?source=cve - Third Party Advisory
References (MISC) https://blog.nintechnet.com/multiple-wordpress-plugins-fixed-csrf-vulnerabilities-part-5/ - (MISC) https://blog.nintechnet.com/multiple-wordpress-plugins-fixed-csrf-vulnerabilities-part-5/ - Exploit, Third Party Advisory
References (MISC) https://blog.nintechnet.com/multiple-wordpress-plugins-fixed-csrf-vulnerabilities-part-2/ - (MISC) https://blog.nintechnet.com/multiple-wordpress-plugins-fixed-csrf-vulnerabilities-part-2/ - Exploit, Third Party Advisory
References (MISC) https://blog.nintechnet.com/multiple-wordpress-plugins-fixed-csrf-vulnerabilities-part-3/ - (MISC) https://blog.nintechnet.com/multiple-wordpress-plugins-fixed-csrf-vulnerabilities-part-3/ - Exploit, Third Party Advisory
CPE cpe:2.3:a:wmpudev:defender_security:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:analogwp:style_kits:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:goldplugins:locations:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:cartflows:funnel_builder:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:wedevs:dokan:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:webberzone:top_10:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:inoplugs:wp-backgrounds_lite:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:wpopal:opal_estate:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:quantumcloud:slider_hero:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:thimpress:wp_hotel_booking:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:cm-wp:woody_code_snippets:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:c7style:contact_form_7_style:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:designwall:dw_question_\&_answer:*:*:*:*:pro:wordpress:*:*
cpe:2.3:a:amministrazione_trasparente_project:amministrazione_trasparente:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:multiple_roles_project:multiple_roles:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:themeisle:rss_aggregator_by_feedzy:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:jesseeproductions:coupon_creator:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:goldplugins:custom_banners:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:wp-mpdf_project:wp-mpdf:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:menu_swapper_project:menu_swapper:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:wedevs:wp_erp:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:slickremix:feed_them_social:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:coolplugins:process_steps_template_designer:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:wpgogo:custom_field_template:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:exportfeed:woocommerce_etsy_integration:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:graphpaperpress:sell_media:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:qtranslate_slug_project:qtranslate_slug:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:ashstonestudios:advanced_popups:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:wpswings:ultimate_gift_cards_for_woocommerce:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:presscustomizr:hueman:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:wpexperts:post_smtp_mailer:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:10web:10webanalytics:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:ewww:image_optimizer:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:rays_grid_project:rays_grid:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:oceanwp:ocean_extra:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:wpexpertdeveloper:wp_private_content_plus:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:multivendorx:multivendorx:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:ashstonestudios:absolute_reviews:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:coolplugins:cool_timeline:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:incsub:forminator:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:implecode:product_catalog_simple:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:rucy_project:rucy:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:goprayer:wp_prayer:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:websitescanner:remove_schema:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:vuukle:vuukle_comments\,_reactions\,_share_bar\,_revenue:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:brainstormforce:import_\/_export_customizer_settings:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:wedevs:wp_project_manager:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:villatheme:abandoned_cart_recovery_for_woocommerce:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:webberzone:better_search:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:edwiser:bridge:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:presscustomizr:customizr:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:paidmembershipspro:paid_memberships_pro:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:implecode:ecommerce_product_catalog:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:brainstormforce:lightweight_sidebar_manager:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:wpconcern:coming_soon_\&_maintenance_mode_page:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:10up:elasticpress:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:eventespresso:event_espresso:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:wpdeveloper:notificationx:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:goldplugins:easy_testimonials:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:wpeasypay:wp_easypay:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:flippercode:photo_gallery_-_image_gallery:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:radio_buttons_for_taxonomies_project:radio_buttons_for_taxonomies:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:tychesoftwares:abandoned_cart_lite_for_woocommerce:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:goldplugins:staff_directory_plugin:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:flippercode:wp_security_question:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:sunshinephotocart:sunshine_photo_cart:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:flippercode:custom_css-js-php:*:*:*:*:*:wordpress:*:*
CVSS v2 : unknown
v3 : unknown 		v2 : unknown
v3 : 8.8
CWE CWE-352
First Time Wpeasypay
10web 10webanalytics
Wmpudev defender Security
Inoplugs wp-backgrounds Lite
Menu Swapper Project menu Swapper
Rays Grid Project
Edwiser bridge
Wpexpertdeveloper
Coolplugins cool Timeline
Wpexperts post Smtp Mailer
Qtranslate Slug Project qtranslate Slug
Themeisle rss Aggregator By Feedzy
Wedevs
Paidmembershipspro paid Memberships Pro
Jesseeproductions
Implecode
Wpgogo
Wpswings
Exportfeed
Multiple Roles Project multiple Roles
Exportfeed woocommerce Etsy Integration
Incsub
Incsub forminator
Wpopal opal Estate
Flippercode custom Css-js-php
Implecode ecommerce Product Catalog
10web
Amministrazione Trasparente Project amministrazione Trasparente
Wp-mpdf Project wp-mpdf
Analogwp
Radio Buttons For Taxonomies Project
Villatheme
Slickremix feed Them Social
Tychesoftwares
Inoplugs
Oceanwp
Thimpress
Goldplugins locations
Cm-wp
Brainstormforce lightweight Sidebar Manager
Ewww image Optimizer
Wpdeveloper
Vuukle vuukle Comments\, Reactions\, Share Bar\, Revenue
Analogwp style Kits
Multiple Roles Project
Menu Swapper Project
Eventespresso event Espresso
Webberzone top 10
Websitescanner
Presscustomizr hueman
Wpeasypay wp Easypay
Ewww
Goprayer
Wpconcern coming Soon \& Maintenance Mode Page
Cm-wp woody Code Snippets
Quantumcloud slider Hero
Wpswings ultimate Gift Cards For Woocommerce
Radio Buttons For Taxonomies Project radio Buttons For Taxonomies
10up
Quantumcloud
Villatheme abandoned Cart Recovery For Woocommerce
Edwiser
Wedevs wp Erp
Cartflows
Graphpaperpress sell Media
Flippercode photo Gallery - Image Gallery
Wpexpertdeveloper wp Private Content Plus
Flippercode
Goldplugins staff Directory Plugin
Wedevs dokan
Wmpudev
Wpgogo custom Field Template
Graphpaperpress
Vuukle
Websitescanner remove Schema
Tychesoftwares abandoned Cart Lite For Woocommerce
Implecode product Catalog Simple
Presscustomizr
Wp-mpdf Project
Wpconcern
Coolplugins process Steps Template Designer
Oceanwp ocean Extra
Jesseeproductions coupon Creator
Multivendorx multivendorx
Ashstonestudios absolute Reviews
Sunshinephotocart
C7style contact Form 7 Style
Coolplugins
Goldplugins custom Banners
Designwall
10up elasticpress
Slickremix
Ashstonestudios
Flippercode wp Security Question
Wpopal
Ashstonestudios advanced Popups
Wpexperts
Cartflows funnel Builder
Goprayer wp Prayer
Multivendorx
Webberzone
Presscustomizr customizr
Brainstormforce import \/ Export Customizer Settings
Thimpress wp Hotel Booking
Rays Grid Project rays Grid
Designwall dw Question \& Answer
Rucy Project rucy
C7style
Goldplugins
Sunshinephotocart sunshine Photo Cart
Goldplugins easy Testimonials
Wpdeveloper notificationx
Amministrazione Trasparente Project
Qtranslate Slug Project
Paidmembershipspro
Eventespresso
Wedevs wp Project Manager
Webberzone better Search
Rucy Project
Brainstormforce
Themeisle

07 Jun 2023, 02:44

Type Values Removed Values Added
New CVE
Information

Published : 2023-06-07 02:15

Updated : 2024-04-16 18:13

NVD link : CVE-2021-4342

Mitre link : CVE-2021-4342

CVE.ORG link : CVE-2021-4342

JSON object : View

Products Affected

No product.

CWE

No CWE.