CVE-2021-29447

CVE Database · CVE-2021-29447

CVE-2021-29447

· HIGHModified

CVSS v3.1

7.1

EPSS

85.72%

Published

Apr 15, 2021

Modified

Nov 21, 2024

Public PoC / Exploit (2)

All weaponized →

Exploit-DBWordPress 5.7 - 'Media Library' XML External Entity Injection (XXE) (Authenticated)TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Wordpress is an open source CMS. A user with the ability to upload files (like an Author) can exploit an XML parsing issue in the Media Library leading to XXE attacks. This requires WordPress installation to be using PHP 8. Access to internal files is possible in a successful XXE attack. This has been patched in WordPress version 5.7.1, along with the older affected versions via a minor release. We strongly recommend you keep auto-updates enabled.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N

Weaknesses (CWE)

CWE-611CWE-611

Affected Products (3)

wordpress · wordpress (up to 5.7.1)vulnerable

debian · debian_linuxvulnerable

References (14)

http://packetstormsecurity.com/files/163148/XML-External-Entity-Via-MP3-File-Upload-On-WordPress.html

Third Party AdvisoryVDB Entry

http://packetstormsecurity.com/files/164198/WordPress-5.7-Media-Library-XML-Injection.html

ExploitThird Party AdvisoryVDB Entry