Create CVE-2021-25118.yaml

2022-05-01 02:10:38 +05:30 · 2022-05-01 02:10:38 +05:30 · 0154892ec8
parent 4ba7ce9509
commit 0154892ec8
1 changed files with 32 additions and 0 deletions
--- a/cves/2021/CVE-2021-25118.yaml
+++ b/cves/2021/CVE-2021-25118.yaml
@ -0,0 +1,32 @@
+id: CVE-2021-25118
+
+info:
+  name: Yoast SEO < 17.3 - Unauthenticated Full Path Disclosure
+  author: DhiyaneshDK
+  severity: low
+  description: The plugin discloses the full internal path of featured images in posts via the wp/v2/posts REST endpoints which could help an attacker identify other vulnerabilities or help during the exploitation of other identified vulnerabilities.
+  remediation: Fixed in version 17.3
+  reference:
+    - https://wpscan.com/vulnerability/2c3f9038-632d-40ef-a099-6ea202efb550
+  tags: wordpress,cve2021,wp-plugin
+
+requests:
+  - method: GET
+    path:
+      - "{{BaseURL}}/wp-json/wp/v2/posts?per_page=1"
+    matchers-condition: and
+    matchers:
+      - type: status
+        status:
+          - 200
+
+      - type: word
+        words:
+          - "application/json"
+        part: header
+
+      - type: word
+        words:
+          - '\/var\/www\/html\'
+        condition: and
+        part: body