CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-25010

The Post Snippets WordPress plugin before 3.1.4 does not have CSRF check when importing files, allowing attacker to make a logged In admin import arbitrary snippets. Furthermore, imported snippers are not sanitised and escaped, which could lead to Stored Cross-Site Scripting issues

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 35.1%

CVSS Severity

CVSS v3 Score 9.6

CVSS v2 Score 6.8

References

Products affected by CVE-2021-25010

Postsnippets » Post Snippets » Version: N/A

cpe:2.3:a:postsnippets:post_snippets:-
Postsnippets » Post Snippets » Version: 1.0

cpe:2.3:a:postsnippets:post_snippets:1.0
Postsnippets » Post Snippets » Version: 1.1

cpe:2.3:a:postsnippets:post_snippets:1.1
Postsnippets » Post Snippets » Version: 1.2

cpe:2.3:a:postsnippets:post_snippets:1.2
Postsnippets » Post Snippets » Version: 1.3

cpe:2.3:a:postsnippets:post_snippets:1.3
Postsnippets » Post Snippets » Version: 1.3.5

cpe:2.3:a:postsnippets:post_snippets:1.3.5
Postsnippets » Post Snippets » Version: 1.4

cpe:2.3:a:postsnippets:post_snippets:1.4
Postsnippets » Post Snippets » Version: 1.4.1

cpe:2.3:a:postsnippets:post_snippets:1.4.1
Postsnippets » Post Snippets » Version: 1.4.2

cpe:2.3:a:postsnippets:post_snippets:1.4.2
Postsnippets » Post Snippets » Version: 1.4.3

cpe:2.3:a:postsnippets:post_snippets:1.4.3
Postsnippets » Post Snippets » Version: 1.4.4

cpe:2.3:a:postsnippets:post_snippets:1.4.4
Postsnippets » Post Snippets » Version: 1.4.5

cpe:2.3:a:postsnippets:post_snippets:1.4.5
Postsnippets » Post Snippets » Version: 1.4.6

cpe:2.3:a:postsnippets:post_snippets:1.4.6
Postsnippets » Post Snippets » Version: 1.4.7

cpe:2.3:a:postsnippets:post_snippets:1.4.7
Postsnippets » Post Snippets » Version: 1.4.8

cpe:2.3:a:postsnippets:post_snippets:1.4.8
Postsnippets » Post Snippets » Version: 1.4.9

cpe:2.3:a:postsnippets:post_snippets:1.4.9
Postsnippets » Post Snippets » Version: 1.4.9.1

cpe:2.3:a:postsnippets:post_snippets:1.4.9.1
Postsnippets » Post Snippets » Version: 1.5

cpe:2.3:a:postsnippets:post_snippets:1.5
Postsnippets » Post Snippets » Version: 1.5.1

cpe:2.3:a:postsnippets:post_snippets:1.5.1
Postsnippets » Post Snippets » Version: 1.5.2

cpe:2.3:a:postsnippets:post_snippets:1.5.2
Postsnippets » Post Snippets » Version: 1.5.3

cpe:2.3:a:postsnippets:post_snippets:1.5.3
Postsnippets » Post Snippets » Version: 1.5.4

cpe:2.3:a:postsnippets:post_snippets:1.5.4
Postsnippets » Post Snippets » Version: 1.7

cpe:2.3:a:postsnippets:post_snippets:1.7
Postsnippets » Post Snippets » Version: 1.7.1

cpe:2.3:a:postsnippets:post_snippets:1.7.1
Postsnippets » Post Snippets » Version: 1.7.2

cpe:2.3:a:postsnippets:post_snippets:1.7.2
Postsnippets » Post Snippets » Version: 1.7.3

cpe:2.3:a:postsnippets:post_snippets:1.7.3
Postsnippets » Post Snippets » Version: 1.8

cpe:2.3:a:postsnippets:post_snippets:1.8
Postsnippets » Post Snippets » Version: 1.8.1

cpe:2.3:a:postsnippets:post_snippets:1.8.1
Postsnippets » Post Snippets » Version: 1.8.2

cpe:2.3:a:postsnippets:post_snippets:1.8.2
Postsnippets » Post Snippets » Version: 1.8.3

cpe:2.3:a:postsnippets:post_snippets:1.8.3
Postsnippets » Post Snippets » Version: 1.8.5

cpe:2.3:a:postsnippets:post_snippets:1.8.5
Postsnippets » Post Snippets » Version: 1.8.6

cpe:2.3:a:postsnippets:post_snippets:1.8.6
Postsnippets » Post Snippets » Version: 1.8.7

cpe:2.3:a:postsnippets:post_snippets:1.8.7
Postsnippets » Post Snippets » Version: 1.8.8

cpe:2.3:a:postsnippets:post_snippets:1.8.8
Postsnippets » Post Snippets » Version: 1.8.9

cpe:2.3:a:postsnippets:post_snippets:1.8.9
Postsnippets » Post Snippets » Version: 1.8.9.1

cpe:2.3:a:postsnippets:post_snippets:1.8.9.1
Postsnippets » Post Snippets » Version: 1.8.9.2

cpe:2.3:a:postsnippets:post_snippets:1.8.9.2
Postsnippets » Post Snippets » Version: 1.9

cpe:2.3:a:postsnippets:post_snippets:1.9
Postsnippets » Post Snippets » Version: 1.9.1

cpe:2.3:a:postsnippets:post_snippets:1.9.1
Postsnippets » Post Snippets » Version: 1.9.2

cpe:2.3:a:postsnippets:post_snippets:1.9.2
Postsnippets » Post Snippets » Version: 1.9.3

cpe:2.3:a:postsnippets:post_snippets:1.9.3
Postsnippets » Post Snippets » Version: 1.9.4

cpe:2.3:a:postsnippets:post_snippets:1.9.4
Postsnippets » Post Snippets » Version: 1.9.5

cpe:2.3:a:postsnippets:post_snippets:1.9.5
Postsnippets » Post Snippets » Version: 1.9.6

cpe:2.3:a:postsnippets:post_snippets:1.9.6
Postsnippets » Post Snippets » Version: 1.9.7

cpe:2.3:a:postsnippets:post_snippets:1.9.7
Postsnippets » Post Snippets » Version: 2.0

cpe:2.3:a:postsnippets:post_snippets:2.0
Postsnippets » Post Snippets » Version: 2.1

cpe:2.3:a:postsnippets:post_snippets:2.1
Postsnippets » Post Snippets » Version: 2.1.1

cpe:2.3:a:postsnippets:post_snippets:2.1.1
Postsnippets » Post Snippets » Version: 2.2

cpe:2.3:a:postsnippets:post_snippets:2.2
Postsnippets » Post Snippets » Version: 2.2.1

cpe:2.3:a:postsnippets:post_snippets:2.2.1
Postsnippets » Post Snippets » Version: 2.2.2

cpe:2.3:a:postsnippets:post_snippets:2.2.2
Postsnippets » Post Snippets » Version: 2.2.3

cpe:2.3:a:postsnippets:post_snippets:2.2.3
Postsnippets » Post Snippets » Version: 2.3

cpe:2.3:a:postsnippets:post_snippets:2.3
Postsnippets » Post Snippets » Version: 2.3.1

cpe:2.3:a:postsnippets:post_snippets:2.3.1
Postsnippets » Post Snippets » Version: 2.3.2

cpe:2.3:a:postsnippets:post_snippets:2.3.2
Postsnippets » Post Snippets » Version: 2.3.3

cpe:2.3:a:postsnippets:post_snippets:2.3.3
Postsnippets » Post Snippets » Version: 2.3.4

cpe:2.3:a:postsnippets:post_snippets:2.3.4
Postsnippets » Post Snippets » Version: 2.3.5

cpe:2.3:a:postsnippets:post_snippets:2.3.5
Postsnippets » Post Snippets » Version: 2.3.6

cpe:2.3:a:postsnippets:post_snippets:2.3.6
Postsnippets » Post Snippets » Version: 2.3.7

cpe:2.3:a:postsnippets:post_snippets:2.3.7
Postsnippets » Post Snippets » Version: 2.3.8

cpe:2.3:a:postsnippets:post_snippets:2.3.8
Postsnippets » Post Snippets » Version: 2.3.9

cpe:2.3:a:postsnippets:post_snippets:2.3.9
Postsnippets » Post Snippets » Version: 2.4

cpe:2.3:a:postsnippets:post_snippets:2.4
Postsnippets » Post Snippets » Version: 2.5

cpe:2.3:a:postsnippets:post_snippets:2.5
Postsnippets » Post Snippets » Version: 2.5.1

cpe:2.3:a:postsnippets:post_snippets:2.5.1
Postsnippets » Post Snippets » Version: 2.5.2

cpe:2.3:a:postsnippets:post_snippets:2.5.2
Postsnippets » Post Snippets » Version: 2.5.3

cpe:2.3:a:postsnippets:post_snippets:2.5.3
Postsnippets » Post Snippets » Version: 2.5.4

cpe:2.3:a:postsnippets:post_snippets:2.5.4
Postsnippets » Post Snippets » Version: 3.0.0

cpe:2.3:a:postsnippets:post_snippets:3.0.0
Postsnippets » Post Snippets » Version: 3.0.1

cpe:2.3:a:postsnippets:post_snippets:3.0.1
Postsnippets » Post Snippets » Version: 3.0.16

cpe:2.3:a:postsnippets:post_snippets:3.0.16
Postsnippets » Post Snippets » Version: 3.0.17

cpe:2.3:a:postsnippets:post_snippets:3.0.17
Postsnippets » Post Snippets » Version: 3.0.18

cpe:2.3:a:postsnippets:post_snippets:3.0.18
Postsnippets » Post Snippets » Version: 3.0.19

cpe:2.3:a:postsnippets:post_snippets:3.0.19
Postsnippets » Post Snippets » Version: 3.0.2

cpe:2.3:a:postsnippets:post_snippets:3.0.2
Postsnippets » Post Snippets » Version: 3.0.20

cpe:2.3:a:postsnippets:post_snippets:3.0.20
Postsnippets » Post Snippets » Version: 3.0.21

cpe:2.3:a:postsnippets:post_snippets:3.0.21
Postsnippets » Post Snippets » Version: 3.0.3

cpe:2.3:a:postsnippets:post_snippets:3.0.3
Postsnippets » Post Snippets » Version: 3.0.4

cpe:2.3:a:postsnippets:post_snippets:3.0.4
Postsnippets » Post Snippets » Version: 3.0.5

cpe:2.3:a:postsnippets:post_snippets:3.0.5
Postsnippets » Post Snippets » Version: 3.1

cpe:2.3:a:postsnippets:post_snippets:3.1
Postsnippets » Post Snippets » Version: 3.1.1

cpe:2.3:a:postsnippets:post_snippets:3.1.1
Postsnippets » Post Snippets » Version: 3.1.2

cpe:2.3:a:postsnippets:post_snippets:3.1.2
Postsnippets » Post Snippets » Version: 3.1.3

cpe:2.3:a:postsnippets:post_snippets:3.1.3

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-25010

Products

Pricing

Contact Us