Vulnerability Details CVE-2021-24430
The Speed Booster Pack ⚡ PageSpeed Optimization Suite WordPress plugin before 4.2.0 did not validate its caching_exclude_urls and caching_include_query_strings settings before outputting them in a PHP file, which could lead to RCE
Exploit prediction scoring system (EPSS) score
EPSS Score 0.01
EPSS Ranking 76.4%
CVSS Severity
CVSS v3 Score 7.2
CVSS v2 Score 6.5
References
- https://m0ze.ru/vulnerability/%5B2021-05-10%5D-%5BWordPress%5D-%5BCWE-94%5D-Speed-Booster-Pack-WordPress-Plugin-v4.2.0-beta.txt
- https://wpscan.com/vulnerability/945d6d2e-fa25-42c0-a7b4-b1794732a0df
- https://m0ze.ru/vulnerability/%5B2021-05-10%5D-%5BWordPress%5D-%5BCWE-94%5D-Speed-Booster-Pack-WordPress-Plugin-v4.2.0-beta.txt
- https://wpscan.com/vulnerability/945d6d2e-fa25-42c0-a7b4-b1794732a0df
Products affected by CVE-2021-24430
-
cpe:2.3:a:optimocha:speed_booster_pack:1.0
-
cpe:2.3:a:optimocha:speed_booster_pack:1.1
-
cpe:2.3:a:optimocha:speed_booster_pack:1.2
-
cpe:2.3:a:optimocha:speed_booster_pack:1.3
-
cpe:2.3:a:optimocha:speed_booster_pack:1.4
-
cpe:2.3:a:optimocha:speed_booster_pack:1.5
-
cpe:2.3:a:optimocha:speed_booster_pack:1.6
-
cpe:2.3:a:optimocha:speed_booster_pack:1.7
-
cpe:2.3:a:optimocha:speed_booster_pack:1.8
-
cpe:2.3:a:optimocha:speed_booster_pack:1.9
-
cpe:2.3:a:optimocha:speed_booster_pack:2.0
-
cpe:2.3:a:optimocha:speed_booster_pack:2.1
-
cpe:2.3:a:optimocha:speed_booster_pack:2.2
-
cpe:2.3:a:optimocha:speed_booster_pack:2.3
-
cpe:2.3:a:optimocha:speed_booster_pack:2.4
-
cpe:2.3:a:optimocha:speed_booster_pack:2.5
-
cpe:2.3:a:optimocha:speed_booster_pack:2.6
-
cpe:2.3:a:optimocha:speed_booster_pack:2.7
-
cpe:2.3:a:optimocha:speed_booster_pack:2.8
-
cpe:2.3:a:optimocha:speed_booster_pack:2.9
-
cpe:2.3:a:optimocha:speed_booster_pack:3.0
-
cpe:2.3:a:optimocha:speed_booster_pack:3.1
-
cpe:2.3:a:optimocha:speed_booster_pack:3.2
-
cpe:2.3:a:optimocha:speed_booster_pack:3.3
-
cpe:2.3:a:optimocha:speed_booster_pack:3.4
-
cpe:2.3:a:optimocha:speed_booster_pack:3.5
-
cpe:2.3:a:optimocha:speed_booster_pack:3.6
-
cpe:2.3:a:optimocha:speed_booster_pack:3.6.1
-
cpe:2.3:a:optimocha:speed_booster_pack:3.7
-
cpe:2.3:a:optimocha:speed_booster_pack:3.7.1
-
cpe:2.3:a:optimocha:speed_booster_pack:3.7.2
-
cpe:2.3:a:optimocha:speed_booster_pack:3.7.3
-
cpe:2.3:a:optimocha:speed_booster_pack:3.7.4
-
cpe:2.3:a:optimocha:speed_booster_pack:3.7.5
-
cpe:2.3:a:optimocha:speed_booster_pack:3.7.6
-
cpe:2.3:a:optimocha:speed_booster_pack:3.7.7
-
cpe:2.3:a:optimocha:speed_booster_pack:3.8
-
cpe:2.3:a:optimocha:speed_booster_pack:3.8.1
-
cpe:2.3:a:optimocha:speed_booster_pack:3.8.2
-
cpe:2.3:a:optimocha:speed_booster_pack:3.8.2.1
-
cpe:2.3:a:optimocha:speed_booster_pack:3.8.3
-
cpe:2.3:a:optimocha:speed_booster_pack:3.8.4.1
-
cpe:2.3:a:optimocha:speed_booster_pack:3.8.4.2
-
cpe:2.3:a:optimocha:speed_booster_pack:3.8.4.3
-
cpe:2.3:a:optimocha:speed_booster_pack:3.8.5
-
cpe:2.3:a:optimocha:speed_booster_pack:3.8.5.1
-
cpe:2.3:a:optimocha:speed_booster_pack:3.8.6
-
cpe:2.3:a:optimocha:speed_booster_pack:4.0.0
-
cpe:2.3:a:optimocha:speed_booster_pack:4.0.1
-
cpe:2.3:a:optimocha:speed_booster_pack:4.1.0
-
cpe:2.3:a:optimocha:speed_booster_pack:4.1.1
-
cpe:2.3:a:optimocha:speed_booster_pack:4.1.3