Vulnerabilities > CVE-2021-24981 - Unspecified vulnerability in Wpwax Directorist

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

HIGH

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

high complexity

wpwax

NVD

Published: 2021-12-21

Updated: 2024-11-21

Summary

The Directorist WordPress plugin before 7.0.6.2 was vulnerable to Cross-Site Request Forgery to Remote File Upload leading to arbitrary PHP shell uploads in the wp-content/plugins directory.

Vulnerable Configurations

Part	Description	Count
Application	Wpwax Wpwax Directorist 1.0.0 Wpwax Directorist 1.1.0 Wpwax Directorist 1.1.1 Wpwax Directorist 2.0.0 Wpwax Directorist 3.0.0 Wpwax Directorist 3.1.0 Wpwax Directorist 3.1.1 Wpwax Directorist 3.1.2 Wpwax Directorist 3.1.3 Wpwax Directorist 3.1.4 Wpwax Directorist 3.1.5 Wpwax Directorist 3.2.0 Wpwax Directorist 3.2.1 Wpwax Directorist 3.2.2 Wpwax Directorist 3.3.0 Wpwax Directorist 4.0.0 Wpwax Directorist 4.0.1 Wpwax Directorist 4.0.2 Wpwax Directorist 4.0.3 Wpwax Directorist 4.1.0 Wpwax Directorist 4.2.0 Wpwax Directorist 4.3.0 Wpwax Directorist 4.3.1 Wpwax Directorist 4.4.0 Wpwax Directorist 4.5.0 Wpwax Directorist 4.5.1 Wpwax Directorist 4.6.0 Wpwax Directorist 4.7.0 Wpwax Directorist 4.7.1 Wpwax Directorist 4.7.2 Wpwax Directorist 4.7.3 Wpwax Directorist 4.7.4 Wpwax Directorist 4.7.5 Wpwax Directorist 4.7.6 Wpwax Directorist 5.0.0 Wpwax Directorist 5.0.1 Wpwax Directorist 5.0.2 Wpwax Directorist 5.0.3 Wpwax Directorist 5.0.4 Wpwax Directorist 5.0.5 Wpwax Directorist 5.0.6 Wpwax Directorist 5.0.7 Wpwax Directorist 5.0.8 Wpwax Directorist 5.1.0 Wpwax Directorist 5.2.0 Wpwax Directorist 5.3.0 Wpwax Directorist 5.4.0 Wpwax Directorist 5.4.1 Wpwax Directorist 5.4.2 Wpwax Directorist 5.4.3 Wpwax Directorist 5.4.4 Wpwax Directorist 5.5.0 Wpwax Directorist 5.5.1 Wpwax Directorist 5.5.2 Wpwax Directorist 5.5.3 Wpwax Directorist 5.6.0 Wpwax Directorist 5.6.1 Wpwax Directorist 5.6.2 Wpwax Directorist 5.6.3 Wpwax Directorist 5.7.0 Wpwax Directorist 5.8.0 Wpwax Directorist 5.9.0 Wpwax Directorist 5.9.1 Wpwax Directorist 5.9.2_ Wpwax Directorist 6.0.0 Wpwax Directorist 6.0.1 Wpwax Directorist 6.0.2 Wpwax Directorist 6.1.0 Wpwax Directorist 6.2.0 Wpwax Directorist 6.2.1 Wpwax Directorist 6.2.2 Wpwax Directorist 6.3.0 Wpwax Directorist 6.3.1 Wpwax Directorist 6.3.2 Wpwax Directorist 6.3.3 Wpwax Directorist 6.3.4 Wpwax Directorist 6.4.0 Wpwax Directorist 6.4.1 Wpwax Directorist 6.4.2 Wpwax Directorist 6.4.3 Wpwax Directorist 6.5.0 Wpwax Directorist 6.5.1 Wpwax Directorist 6.5.2 Wpwax Directorist 6.5.3 Wpwax Directorist 6.5.4 Wpwax Directorist 6.5.5 Wpwax Directorist 6.5.6 Wpwax Directorist 6.5.7 Wpwax Directorist 6.5.8 Wpwax Directorist 7.0 Wpwax Directorist 7.0.1 Wpwax Directorist 7.0.2 Wpwax Directorist 7.0.3 Wpwax Directorist 7.0.3.1 Wpwax Directorist 7.0.3.2 Wpwax Directorist 7.0.3.3 Wpwax Directorist 7.0.4 Wpwax Directorist 7.0.4.1 Wpwax Directorist 7.0.5 Wpwax Directorist 7.0.5.1 Wpwax Directorist 7.0.5.2 Wpwax Directorist 7.0.5.3 Wpwax Directorist 7.0.5.4 Wpwax Directorist 7.0.5.5 Wpwax Directorist 7.0.5.6 Wpwax Directorist 7.0.6 Wpwax Directorist 7.0.6.1	107

Summary

Vulnerable Configurations

References