CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-24503

The Popular Brand Icons – Simple Icons WordPress plugin before 2.7.8 does not sanitise or validate some of its shortcode parameters, such as "color", "size" or "class", allowing users with a role as low as Contributor to set Cross-Site payload in them. A post made by a contributor would still have to be approved by an admin to have the XSS triggered in the frontend, however, higher privilege users, such as editor could exploit this without the need of approval, and even when the blog disallows the unfiltered_html capability.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 37.9%

CVSS Severity

CVSS v3 Score 5.4

CVSS v2 Score 3.5

References

Products affected by CVE-2021-24503

Thememason » Popular Brand Icons - Simple Icons » Version: N/A

cpe:2.3:a:thememason:popular_brand_icons_-_simple_icons:-
Thememason » Popular Brand Icons - Simple Icons » Version: 1.1.0

cpe:2.3:a:thememason:popular_brand_icons_-_simple_icons:1.1.0
Thememason » Popular Brand Icons - Simple Icons » Version: 2.0

cpe:2.3:a:thememason:popular_brand_icons_-_simple_icons:2.0
Thememason » Popular Brand Icons - Simple Icons » Version: 2.0.1

cpe:2.3:a:thememason:popular_brand_icons_-_simple_icons:2.0.1
Thememason » Popular Brand Icons - Simple Icons » Version: 2.0.2

cpe:2.3:a:thememason:popular_brand_icons_-_simple_icons:2.0.2
Thememason » Popular Brand Icons - Simple Icons » Version: 2.0.3

cpe:2.3:a:thememason:popular_brand_icons_-_simple_icons:2.0.3
Thememason » Popular Brand Icons - Simple Icons » Version: 2.1

cpe:2.3:a:thememason:popular_brand_icons_-_simple_icons:2.1
Thememason » Popular Brand Icons - Simple Icons » Version: 2.2.0

cpe:2.3:a:thememason:popular_brand_icons_-_simple_icons:2.2.0
Thememason » Popular Brand Icons - Simple Icons » Version: 2.2.1

cpe:2.3:a:thememason:popular_brand_icons_-_simple_icons:2.2.1
Thememason » Popular Brand Icons - Simple Icons » Version: 2.2.2

cpe:2.3:a:thememason:popular_brand_icons_-_simple_icons:2.2.2
Thememason » Popular Brand Icons - Simple Icons » Version: 2.3.0

cpe:2.3:a:thememason:popular_brand_icons_-_simple_icons:2.3.0
Thememason » Popular Brand Icons - Simple Icons » Version: 2.3.1

cpe:2.3:a:thememason:popular_brand_icons_-_simple_icons:2.3.1
Thememason » Popular Brand Icons - Simple Icons » Version: 2.3.2

cpe:2.3:a:thememason:popular_brand_icons_-_simple_icons:2.3.2
Thememason » Popular Brand Icons - Simple Icons » Version: 2.3.3

cpe:2.3:a:thememason:popular_brand_icons_-_simple_icons:2.3.3
Thememason » Popular Brand Icons - Simple Icons » Version: 2.4.0

cpe:2.3:a:thememason:popular_brand_icons_-_simple_icons:2.4.0
Thememason » Popular Brand Icons - Simple Icons » Version: 2.5.0

cpe:2.3:a:thememason:popular_brand_icons_-_simple_icons:2.5.0
Thememason » Popular Brand Icons - Simple Icons » Version: 2.6.0

cpe:2.3:a:thememason:popular_brand_icons_-_simple_icons:2.6.0
Thememason » Popular Brand Icons - Simple Icons » Version: 2.7.0

cpe:2.3:a:thememason:popular_brand_icons_-_simple_icons:2.7.0
Thememason » Popular Brand Icons - Simple Icons » Version: 2.7.1

cpe:2.3:a:thememason:popular_brand_icons_-_simple_icons:2.7.1
Thememason » Popular Brand Icons - Simple Icons » Version: 2.7.2

cpe:2.3:a:thememason:popular_brand_icons_-_simple_icons:2.7.2
Thememason » Popular Brand Icons - Simple Icons » Version: 2.7.3

cpe:2.3:a:thememason:popular_brand_icons_-_simple_icons:2.7.3
Thememason » Popular Brand Icons - Simple Icons » Version: 2.7.4

cpe:2.3:a:thememason:popular_brand_icons_-_simple_icons:2.7.4
Thememason » Popular Brand Icons - Simple Icons » Version: 2.7.5

cpe:2.3:a:thememason:popular_brand_icons_-_simple_icons:2.7.5
Thememason » Popular Brand Icons - Simple Icons » Version: 2.7.6

cpe:2.3:a:thememason:popular_brand_icons_-_simple_icons:2.7.6
Thememason » Popular Brand Icons - Simple Icons » Version: 2.7.7

cpe:2.3:a:thememason:popular_brand_icons_-_simple_icons:2.7.7

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-24503

Products

Pricing

Contact Us