Skip to main content

Pinterest Automatic Pin

1 CVEs product

Monthly

CVE-2021-4380 CRITICAL POC THREAT Emergency

The Pinterest Automatic plugin for WordPress is vulnerable to authorization bypass due to missing capability checks on the 'wp_pinterest_automatic_parse_request' function and the 'process_form.php'. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 83.3%.

PHP WordPress Authentication Bypass Pinterest Automatic Pin
NVD WPScan VulDB
CVSS 3.1
9.8
EPSS
83.3%
Threat
6.0
EPSS 83% 6.0 CVSS 9.8
CRITICAL POC THREAT Emergency

The Pinterest Automatic plugin for WordPress is vulnerable to authorization bypass due to missing capability checks on the 'wp_pinterest_automatic_parse_request' function and the 'process_form.php'. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 83.3%.

PHP WordPress Authentication Bypass +1
NVD WPScan VulDB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy