NVD Vulnerability Detail

CVE-2021-24884

Summary	The Formidable Form Builder WordPress plugin before 4.09.05 allows to inject certain HTML Tags like <audio>,<video>,<img>,<a> and<button>.This could allow an unauthenticated, remote attacker to exploit a HTML-injection byinjecting a malicous link. The HTML-injection may trick authenticated users to follow the link. If the Link gets clicked, Javascript code can be executed. The vulnerability is due to insufficient sanitization of the "data-frmverify" tag for links in the web-based entry inspection page of affected systems. A successful exploitation incomibantion with CSRF could allow the attacker to perform arbitrary actions on an affected system with the privileges of the user. These actions include stealing the users account by changing their password or allowing attackers to submit their own code through an authenticated user resulting in Remote Code Execution. If an authenticated user who is able to edit Wordpress PHP Code in any kind, clicks the malicious link, PHP code can be edited.
Publication Date	Oct. 25, 2021, 11:15 p.m.
Registration Date	Oct. 26, 2021, 10 a.m.
Last Update	Nov. 21, 2024, 2:53 p.m.

Affected software configurations

Configuration1		or higher	or less	more than	less than
cpe:2.3:a:strategy11:formidable_form_builder::::::wordpress::*					4.09.05

Related information, measures and tools

No	URL	タグ
1	https://github.com/S1lkys/XSS-in-Formidable-4.09.04/blob/main/XSS-in-Formidable-4.09.04.pdf	Exploit Third Party Advisory
2	https://github.com/S1lkys/XSS-in-Formidable-4.09.04/blob/main/XSS-in-Formidable-4.09.04.pdf	Exploit Third Party Advisory
3	https://github.com/Strategy11/formidable-forms/pull/335/files	Patch Third Party Advisory
4	https://github.com/Strategy11/formidable-forms/pull/335/files	Patch Third Party Advisory
5	https://wpscan.com/vulnerability/b57dacdd-43c2-48f8-ac1e-eb8306b22533	Exploit Third Party Advisory
6	https://wpscan.com/vulnerability/b57dacdd-43c2-48f8-ac1e-eb8306b22533	Exploit Third Party Advisory

Common Vulnerabilities List

No	CWE	Name	URL
1	CWE-79	クロスサイト・スクリプティング（XSS）	https://cwe.mitre.org/data/definitions/79.html
2	CWE-352	クロスサイト・リクエスト・フォージェリ（CSRF）	https://cwe.mitre.org/data/definitions/352.html
3	CWE-352	同一生成元ポリシー違反	https://cwe.mitre.org/data/definitions/346.html

JVN Vulnerability Information

WordPress 用 Formidable Form Builder プラグインにおけるクロスサイトスクリプティングの脆弱性

Title	WordPress 用 Formidable Form Builder プラグインにおけるクロスサイトスクリプティングの脆弱性
Summary	WordPress 用 Formidable Form Builder プラグインには、クロスサイトスクリプティングの脆弱性、およびクロスサイトリクエストフォージェリの脆弱性が存在します。
Possible impacts	情報を取得される、情報を改ざんされる、およびサービス運用妨害 (DoS) 状態にされる可能性があります。
Solution	ベンダより正式な対策が公開されています。ベンダ情報を参照して適切な対策を実施してください。
Publication Date	Jan. 28, 2021, midnight
Registration Date	Oct. 7, 2022, 5:41 p.m.
Last Update	Oct. 7, 2022, 5:41 p.m.

Affected System

Strategy11

Formidable Form Builder 4.09.05 未満

CVE (情報セキュリティ共通脆弱性識別子)

No	Name	URL
Common Vulnerabilities and Exposures (CVE)
1	CVE-2021-24884	https://www.cve.org/CVERecord?id=CVE-2021-24884
National Vulnerability Database (NVD)
2	CVE-2021-24884	https://nvd.nist.gov/vuln/detail/CVE-2021-24884

CWE (共通脆弱性タイプ一覧)

No	Name	URL
JVNDB
1	CWE-352	https://jvndb.jvn.jp/ja/cwe/CWE-352.html
2	CWE-79	https://jvndb.jvn.jp/ja/cwe/CWE-79.html

ベンダー情報

No	Name	URL
GitHub
1	Avoid XSS from data-verify / data-caution attributes #335	https://github.com/Strategy11/formidable-forms/pull/335/files

その他

No	Name	URL
関連文書
1	WPScan Vulnerability Database : Formidable Form Builder < 4.09.05 - Unauthenticated Stored Cross-Site Scripting	https://wpscan.com/vulnerability/b57dacdd-43c2-48f8-ac1e-eb8306b22533

Change Log

No	Changed Details	Date of change
1	[2022年10月04日] 掲載	Oct. 4, 2022, 11:17 a.m.