CVE-2021-24905

Public Exploit

Advanced Contact form 7 DB < 1.8.7 - Subscriber+ Arbitrary File Deletion

Description

The Advanced Contact form 7 DB WordPress plugin before 1.8.7 does not have authorisation nor CSRF checks in the acf7_db_edit_scr_file_delete AJAX action, and does not validate the file to be deleted, allowing any authenticated user to delete arbitrary files on the web server. For example, removing the wp-config.php allows attackers to trigger WordPress setup again, gain administrator privileges and execute arbitrary code or display arbitrary content to the users.

References

Link	Tags
https://wpscan.com/vulnerability/cf022415-6614-4b95-913b-802186766ae6	third party advisory exploit

Frequently Asked Questions

What is the severity of CVE-2021-24905?: CVE-2021-24905 has been scored as a high severity vulnerability.
How to fix CVE-2021-24905?: To fix CVE-2021-24905, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2021-24905 being actively exploited in the wild?: It is possible that CVE-2021-24905 is being exploited or will be exploited in a near future based on public information. According to its EPSS score, there is a ~0% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2021-24905?: CVE-2021-24905 affects Unknown Advanced Contact form 7 DB.

This platform uses data from the NIST NVD, MITRE CVE, MITRE CWE, First.org and CISA KEV but is not endorsed or certified by these entities. CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site.

Description

Categories

CWE-863 – Incorrect Authorization

CWE-352 – Cross-Site Request Forgery (CSRF)

References

Frequently Asked Questions