Create CVE-2021-25118.yaml

patch-1
Prince Chaddha 2022-05-01 02:10:38 +05:30 committed by GitHub
parent 4ba7ce9509
commit 0154892ec8
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 32 additions and 0 deletions

View File

@ -0,0 +1,32 @@
id: CVE-2021-25118
info:
name: Yoast SEO < 17.3 - Unauthenticated Full Path Disclosure
author: DhiyaneshDK
severity: low
description: The plugin discloses the full internal path of featured images in posts via the wp/v2/posts REST endpoints which could help an attacker identify other vulnerabilities or help during the exploitation of other identified vulnerabilities.
remediation: Fixed in version 17.3
reference:
- https://wpscan.com/vulnerability/2c3f9038-632d-40ef-a099-6ea202efb550
tags: wordpress,cve2021,wp-plugin
requests:
- method: GET
path:
- "{{BaseURL}}/wp-json/wp/v2/posts?per_page=1"
matchers-condition: and
matchers:
- type: status
status:
- 200
- type: word
words:
- "application/json"
part: header
- type: word
words:
- '\/var\/www\/html\'
condition: and
part: body