CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-24966

The Error Log Viewer WordPress plugin through 1.1.1 does not validate the path of the log file to clear, allowing high privilege users to clear arbitrary files on the web server, including those outside of the blog folder

Exploit prediction scoring system (EPSS) score

EPSS Score 0.044

EPSS Ranking 88.4%

CVSS Severity

CVSS v3 Score 4.9

CVSS v2 Score 4.0

References

Products affected by CVE-2021-24966

Bestwebsoft » Error Log Viewer » Version: N/A

cpe:2.3:a:bestwebsoft:error_log_viewer:-
Bestwebsoft » Error Log Viewer » Version: 1.0.0

cpe:2.3:a:bestwebsoft:error_log_viewer:1.0.0
Bestwebsoft » Error Log Viewer » Version: 1.0.1

cpe:2.3:a:bestwebsoft:error_log_viewer:1.0.1
Bestwebsoft » Error Log Viewer » Version: 1.0.2

cpe:2.3:a:bestwebsoft:error_log_viewer:1.0.2
Bestwebsoft » Error Log Viewer » Version: 1.0.3

cpe:2.3:a:bestwebsoft:error_log_viewer:1.0.3
Bestwebsoft » Error Log Viewer » Version: 1.0.4

cpe:2.3:a:bestwebsoft:error_log_viewer:1.0.4
Bestwebsoft » Error Log Viewer » Version: 1.0.5

cpe:2.3:a:bestwebsoft:error_log_viewer:1.0.5
Bestwebsoft » Error Log Viewer » Version: 1.0.6

cpe:2.3:a:bestwebsoft:error_log_viewer:1.0.6
Bestwebsoft » Error Log Viewer » Version: 1.0.7

cpe:2.3:a:bestwebsoft:error_log_viewer:1.0.7
Bestwebsoft » Error Log Viewer » Version: 1.0.8

cpe:2.3:a:bestwebsoft:error_log_viewer:1.0.8
Bestwebsoft » Error Log Viewer » Version: 1.0.9

cpe:2.3:a:bestwebsoft:error_log_viewer:1.0.9
Bestwebsoft » Error Log Viewer » Version: 1.1.0

cpe:2.3:a:bestwebsoft:error_log_viewer:1.1.0
Bestwebsoft » Error Log Viewer » Version: 1.1.1

cpe:2.3:a:bestwebsoft:error_log_viewer:1.1.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-24966

Products

Pricing

Contact Us