SB2021092401 - Multiple vulnerabilities in Ninja Forms plugin for WordPress
Published: September 24, 2021
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 2 secuirty vulnerabilities.
1) Input validation error (CVE-ID: CVE-2021-34648)
The vulnerability allows a remote attacker to compromise the target system.
The vulnerability exists due to insufficient validation of user-supplied input in the "trigger_email_action" function in the ~/includes/Routes/Submissions.php file. A remote authenticated attacker can use a specially crafted email to socially engineer victims.
2) Information disclosure (CVE-ID: CVE-2021-34647)
The vulnerability allows a remote attacker to gain access to potentially sensitive information.
The vulnerability exists due to excessive data output by the application in the "bulk_export_submissions" function in the ~/includes/Routes/Submissions.php file. A remote authenticated attacker can gain unauthorized access to sensitive information on the system.
Remediation
Install update from vendor's website.
References
- https://www.wordfence.com/blog/2021/09/recently-patched-vulnerabilities-in-ninja-forms-plugin-affects-over-1-million-site-owners/
- https://plugins.trac.wordpress.org/browser/ninja-forms/trunk/includes/Routes/Submissions.php?rev=2543837#L155
- https://plugins.trac.wordpress.org/browser/ninja-forms/trunk/includes/Routes/Submissions.php?rev=2543837#L107