updates 2024-12-09

Signed-off-by: Weston Steimel <[email protected]>
anchore · Dec 9, 2024 · cd265f5 · cd265f5
1 parent 84ee720
commit cd265f5
Show file tree

Hide file tree

Showing 54 changed files with 1,786 additions and 5 deletions.
diff --git a/data/anchore/2022/CVE-2022-4974.json b/data/anchore/2022/CVE-2022-4974.json
@@ -1935,6 +1935,7 @@
         "packageName": "anywhere-elementor",
         "packageType": "wordpress-plugin",
         "product": "AnyWhere Elementor",
+        "repo": "https://plugins.svn.wordpress.org/anywhere-elementor",
         "vendor": "wpvibes",
         "versions": [
           {

diff --git a/data/anchore/2023/CVE-2023-7264.json b/data/anchore/2023/CVE-2023-7264.json
@@ -20,10 +20,11 @@
         "packageName": "build-app-online",
         "packageType": "wordpress-plugin",
         "product": "Build App Online",
+        "repo": "https://plugins.svn.wordpress.org/build-app-online",
         "vendor": "hakeemnala",
         "versions": [
           {
-            "lessThanOrEqual": "1.0.21",
+            "lessThan": "1.0.23",
             "status": "affected",
             "version": "0",
             "versionType": "semver"

diff --git a/data/anchore/2024/CVE-2024-10046.json b/data/anchore/2024/CVE-2024-10046.json
@@ -0,0 +1,40 @@
+{
+  "additionalMetadata": {
+    "cna": "wordfence",
+    "cveId": "CVE-2024-10046",
+    "description": "The افزونه پیامک ووکامرس Persian WooCommerce SMS plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of remove_query_arg without appropriate escaping on the URL in all versions up to, and including, 7.0.5. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can successfully trick a user into performing an action such as clicking on a link.",
+    "reason": "Added CPE configurations because not yet analyzed by NVD.",
+    "references": [
+      "https://plugins.trac.wordpress.org/browser/persian-woocommerce-sms/tags/7.0.3/src/SMS/Archive.php#L93",
+      "https://plugins.trac.wordpress.org/changeset/3201912/",
+      "https://www.wordfence.com/threat-intel/vulnerabilities/id/175a69da-c47a-40f3-98c7-7cfcdf98f9f6?source=cve"
+    ]
+  },
+  "adp": {
+    "affected": [
+      {
+        "collectionURL": "https://wordpress.org/plugins",
+        "cpes": [
+          "cpe:2.3:a:woocommerce:persian_woocommerce_sms:*:*:*:*:*:wordpress:*:*"
+        ],
+        "packageName": "persian-woocommerce-sms",
+        "packageType": "wordpress-plugin",
+        "product": "افزونه پیامک ووکامرس Persian WooCommerce SMS",
+        "repo": "https://plugins.svn.wordpress.org/persian-woocommerce-sms",
+        "vendor": "persianscript",
+        "versions": [
+          {
+            "lessThan": "7.0.6",
+            "status": "affected",
+            "version": "0",
+            "versionType": "semver"
+          }
+        ]
+      }
+    ],
+    "providerMetadata": {
+      "orgId": "00000000-0000-4000-8000-000000000000",
+      "shortName": "anchoreadp"
+    }
+  }
+}
diff --git a/data/anchore/2024/CVE-2024-10480.json b/data/anchore/2024/CVE-2024-10480.json
@@ -0,0 +1,37 @@
+{
+  "additionalMetadata": {
+    "cna": "wpscan",
+    "cveId": "CVE-2024-10480",
+    "description": "The 3DPrint Lite WordPress plugin before 2.1 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack.",
+    "reason": "Added CPE configurations because not yet analyzed by NVD.",
+    "references": [
+      "https://wpscan.com/vulnerability/725ac766-c849-49d6-a968-58fcc2e134c8/"
+    ]
+  },
+  "adp": {
+    "affected": [
+      {
+        "collectionURL": "https://wordpress.org/plugins",
+        "cpes": [
+          "cpe:2.3:a:wp3dprinting:3dprint_lite:*:*:*:*:*:wordpress:*:*"
+        ],
+        "packageName": "3dprint-lite",
+        "packageType": "wordpress-plugin",
+        "product": "3DPrint Lite",
+        "repo": "https://plugins.svn.wordpress.org/3dprint-lite",
+        "versions": [
+          {
+            "lessThan": "2.1",
+            "status": "affected",
+            "version": "0",
+            "versionType": "semver"
+          }
+        ]
+      }
+    ],
+    "providerMetadata": {
+      "orgId": "00000000-0000-4000-8000-000000000000",
+      "shortName": "anchoreadp"
+    }
+  }
+}
diff --git a/data/anchore/2024/CVE-2024-10516.json b/data/anchore/2024/CVE-2024-10516.json
@@ -0,0 +1,41 @@
+{
+  "additionalMetadata": {
+    "cna": "wordfence",
+    "cveId": "CVE-2024-10516",
+    "description": "The Swift Performance Lite plugin for WordPress is vulnerable to Local PHP File Inclusion in all versions up to, and including, 2.3.7.1 via the 'ajaxify' function. This makes it possible for unauthenticated attackers to include and execute arbitrary files on the server, allowing the execution of any PHP code in those files. This can be used to bypass access controls, obtain sensitive data, or achieve code execution in cases where images and other “safe” file types can be uploaded and included.",
+    "reason": "Added CPE configurations because not yet analyzed by NVD.",
+    "references": [
+      "https://plugins.trac.wordpress.org/browser/swift-performance-lite/trunk/includes/classes/class.ajax.php#L795",
+      "https://plugins.trac.wordpress.org/browser/swift-performance-lite/trunk/includes/classes/class.ajax.php#L824",
+      "https://plugins.trac.wordpress.org/changeset/3201933/",
+      "https://www.wordfence.com/threat-intel/vulnerabilities/id/4921f41a-a9b1-4ae2-a903-c14ed22dcc15?source=cve"
+    ]
+  },
+  "adp": {
+    "affected": [
+      {
+        "collectionURL": "https://wordpress.org/plugins",
+        "cpes": [
+          "cpe:2.3:a:swteplugins:swift_performance:*:*:*:*:lite:wordpress:*:*"
+        ],
+        "packageName": "swift-performance-lite",
+        "packageType": "wordpress-plugin",
+        "product": "Swift Performance Lite",
+        "repo": "https://plugins.svn.wordpress.org/swift-performance-lite",
+        "vendor": "swte",
+        "versions": [
+          {
+            "lessThan": "2.3.7.2",
+            "status": "affected",
+            "version": "0",
+            "versionType": "semver"
+          }
+        ]
+      }
+    ],
+    "providerMetadata": {
+      "orgId": "00000000-0000-4000-8000-000000000000",
+      "shortName": "anchoreadp"
+    }
+  }
+}
diff --git a/data/anchore/2024/CVE-2024-10681.json b/data/anchore/2024/CVE-2024-10681.json
@@ -0,0 +1,40 @@
+{
+  "additionalMetadata": {
+    "cna": "wordfence",
+    "cveId": "CVE-2024-10681",
+    "description": "The The ARMember – Membership Plugin, Content Restriction, Member Levels, User Profile & User signup plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 4.0.51. This is due to the software allowing users to execute an action that does not properly validate a value before running do_shortcode. This makes it possible for authenticated attackers, with subscriber-level access and above, to execute arbitrary shortcodes.",
+    "reason": "Added CPE configurations because not yet analyzed by NVD.",
+    "references": [
+      "https://plugins.trac.wordpress.org/changeset/3199747/armember-membership/trunk/core/classes/class.arm_shortcodes.php",
+      "https://www.wordfence.com/threat-intel/vulnerabilities/id/ee0eead2-3eab-4a2a-bfe4-c0d8f91dc0a5?source=cve"
+    ]
+  },
+  "adp": {
+    "affected": [
+      {
+        "collectionURL": "https://wordpress.org/plugins",
+        "cpes": [
+          "cpe:2.3:a:armemberplugin:armember:*:*:*:*:*:wordpress:*:*",
+          "cpe:2.3:a:reputeinfosystems:armember:*:*:*:*:*:wordpress:*:*"
+        ],
+        "packageName": "armember-membership",
+        "packageType": "wordpress-plugin",
+        "product": "ARMember – Membership Plugin, Content Restriction, Member Levels, User Profile & User signup",
+        "repo": "https://plugins.svn.wordpress.org/armember-membership",
+        "vendor": "reputeinfosystems",
+        "versions": [
+          {
+            "lessThan": "4.0.52",
+            "status": "affected",
+            "version": "0",
+            "versionType": "semver"
+          }
+        ]
+      }
+    ],
+    "providerMetadata": {
+      "orgId": "00000000-0000-4000-8000-000000000000",
+      "shortName": "anchoreadp"
+    }
+  }
+}
diff --git a/data/anchore/2024/CVE-2024-11010.json b/data/anchore/2024/CVE-2024-11010.json
@@ -0,0 +1,41 @@
+{
+  "additionalMetadata": {
+    "cna": "wordfence",
+    "cveId": "CVE-2024-11010",
+    "description": "The FileOrganizer – Manage WordPress and Website Files plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 1.1.4 via the 'default_lang' parameter. This makes it possible for authenticated attackers, with Administrator-level access and above, to include and execute arbitrary files on the server, allowing the execution of any PHP code in those files. This can be used to bypass access controls, obtain sensitive data, or achieve code execution in cases where images and other “safe” file types can be uploaded and included.",
+    "reason": "Added CPE configurations because not yet analyzed by NVD.",
+    "references": [
+      "https://plugins.trac.wordpress.org/browser/fileorganizer/trunk/init.php#L222",
+      "https://plugins.trac.wordpress.org/browser/fileorganizer/trunk/main/fileorganizer.php#L149",
+      "https://plugins.trac.wordpress.org/changeset/3201635/",
+      "https://www.wordfence.com/threat-intel/vulnerabilities/id/8e958653-36c4-4979-89e1-d9411a35a92a?source=cve"
+    ]
+  },
+  "adp": {
+    "affected": [
+      {
+        "collectionURL": "https://wordpress.org/plugins",
+        "cpes": [
+          "cpe:2.3:a:fileorganizer:fileorganizer:*:*:*:*:*:wordpress:*:*"
+        ],
+        "packageName": "fileorganizer",
+        "packageType": "wordpress-plugin",
+        "product": "FileOrganizer – Manage WordPress and Website Files",
+        "repo": "https://plugins.svn.wordpress.org/fileorganizer",
+        "vendor": "softaculous",
+        "versions": [
+          {
+            "lessThan": "1.1.5",
+            "status": "affected",
+            "version": "0",
+            "versionType": "semver"
+          }
+        ]
+      }
+    ],
+    "providerMetadata": {
+      "orgId": "00000000-0000-4000-8000-000000000000",
+      "shortName": "anchoreadp"
+    }
+  }
+}
diff --git a/data/anchore/2024/CVE-2024-11289.json b/data/anchore/2024/CVE-2024-11289.json
@@ -0,0 +1,37 @@
+{
+  "additionalMetadata": {
+    "cna": "wordfence",
+    "cveId": "CVE-2024-11289",
+    "description": "The Soledad theme for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 8.5.9 via several functions like penci_archive_more_post_ajax_func, penci_more_post_ajax_func, and penci_more_featured_post_ajax_func. This makes it possible for unauthenticated attackers to include and execute PHP files on the server, allowing the execution of any PHP code in those files. This can be used to bypass access controls, obtain sensitive data, or achieve code execution in cases where PHP files can be uploaded and included. The exploitability of this is limited to Windows.",
+    "reason": "Added CPE configurations because not yet analyzed by NVD.",
+    "references": [
+      "https://themeforest.net/item/soledad-multiconcept-blogmagazine-wp-theme/12945398",
+      "https://www.wordfence.com/threat-intel/vulnerabilities/id/927674db-05f1-4f3b-8297-8a907955ea87?source=cve"
+    ]
+  },
+  "adp": {
+    "affected": [
+      {
+        "cpes": [
+          "cpe:2.3:a:pencidesign:soledad:*:*:*:*:*:wordpress:*:*"
+        ],
+        "packageName": "soledad",
+        "packageType": "wordpress-theme",
+        "product": "Soledad",
+        "vendor": "pencidesign",
+        "versions": [
+          {
+            "lessThan": "8.6.0",
+            "status": "affected",
+            "version": "0",
+            "versionType": "semver"
+          }
+        ]
+      }
+    ],
+    "providerMetadata": {
+      "orgId": "00000000-0000-4000-8000-000000000000",
+      "shortName": "anchoreadp"
+    }
+  }
+}
diff --git a/data/anchore/2024/CVE-2024-11292.json b/data/anchore/2024/CVE-2024-11292.json
@@ -0,0 +1,39 @@
+{
+  "additionalMetadata": {
+    "cna": "wordfence",
+    "cveId": "CVE-2024-11292",
+    "description": "The WP Private Content Plus plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 3.6.1 via the WordPress core search feature. This makes it possible for unauthenticated attackers to extract sensitive data from posts that have been restricted to higher-level roles such as administrator.",
+    "reason": "Added CPE configurations because not yet analyzed by NVD.",
+    "references": [
+      "https://wordpress.org/plugins/wp-private-content-plus/",
+      "https://www.wordfence.com/threat-intel/vulnerabilities/id/30c46b91-e371-480f-943a-3906d8b6bbba?source=cve"
+    ]
+  },
+  "adp": {
+    "affected": [
+      {
+        "collectionURL": "https://wordpress.org/plugins",
+        "cpes": [
+          "cpe:2.3:a:wpexpertdeveloper:wp_private_content_plus:*:*:*:*:*:wordpress:*:*"
+        ],
+        "packageName": "wp-private-content-plus",
+        "packageType": "wordpress-plugin",
+        "product": "WP Private Content Plus",
+        "repo": "https://plugins.svn.wordpress.org/wp-private-content-plus",
+        "vendor": "nimeshrmr",
+        "versions": [
+          {
+            "lessThanOrEqual": "3.6.1",
+            "status": "affected",
+            "version": "0",
+            "versionType": "semver"
+          }
+        ]
+      }
+    ],
+    "providerMetadata": {
+      "orgId": "00000000-0000-4000-8000-000000000000",
+      "shortName": "anchoreadp"
+    }
+  }
+}
diff --git a/data/anchore/2024/CVE-2024-11436.json b/data/anchore/2024/CVE-2024-11436.json
@@ -0,0 +1,39 @@
+{
+  "additionalMetadata": {
+    "cna": "wordfence",
+    "cveId": "CVE-2024-11436",
+    "description": "The Drag & Drop Builder, Human Face Detector, Pre-built Templates, Spam Protection, User Email Notifications & more! plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'page' parameter in all versions up to, and including, 1.4.19 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can successfully trick a user into performing an action such as clicking on a link.",
+    "reason": "Added CPE configurations because not yet analyzed by NVD.",
+    "references": [
+      "https://plugins.trac.wordpress.org/changeset/3202800/",
+      "https://www.wordfence.com/threat-intel/vulnerabilities/id/125a1d8d-8cd9-439c-b765-198ad369f987?source=cve"
+    ]
+  },
+  "adp": {
+    "affected": [
+      {
+        "collectionURL": "https://wordpress.org/plugins",
+        "cpes": [
+          "cpe:2.3:a:pieforms:drag_\\&_drop_builder:*:*:*:*:*:wordpress:*:*"
+        ],
+        "packageName": "pie-forms-for-wp",
+        "packageType": "wordpress-plugin",
+        "product": "Drag & Drop Builder, Human Face Detector, Pre-built Templates, Spam Protection, User Email Notifications & more!",
+        "repo": "https://plugins.svn.wordpress.org/pie-forms-for-wp",
+        "vendor": "genetechproducts",
+        "versions": [
+          {
+            "lessThan": "1.5",
+            "status": "affected",
+            "version": "0",
+            "versionType": "semver"
+          }
+        ]
+      }
+    ],
+    "providerMetadata": {
+      "orgId": "00000000-0000-4000-8000-000000000000",
+      "shortName": "anchoreadp"
+    }
+  }
+}
diff --git a/data/anchore/2024/CVE-2024-11444.json b/data/anchore/2024/CVE-2024-11444.json
@@ -0,0 +1,40 @@
+{
+  "additionalMetadata": {
+    "cna": "wordfence",
+    "cveId": "CVE-2024-11444",
+    "description": "The CLUEVO LMS, E-Learning Platform plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.13.2. This is due to missing or incorrect nonce validation on the cluevo_render_module_ui() function. This makes it possible for unauthenticated attackers to delete modules via a forged request granted they can trick a site administrator into performing an action such as clicking on a link.",
+    "reason": "Added CPE configurations because not yet analyzed by NVD.",
+    "references": [
+      "https://plugins.trac.wordpress.org/browser/cluevo-lms/tags/1.13.2/functions/functions.module-management.inc.php#L925",
+      "https://plugins.trac.wordpress.org/browser/cluevo-lms/tags/1.13.2/functions/functions.module-management.inc.php#L928",
+      "https://www.wordfence.com/threat-intel/vulnerabilities/id/2a3056d4-5ee9-4b31-9ef8-0e55f470ad23?source=cve"
+    ]
+  },
+  "adp": {
+    "affected": [
+      {
+        "collectionURL": "https://wordpress.org/plugins",
+        "cpes": [
+          "cpe:2.3:a:cluevo:learning_management_system:*:*:*:*:*:wordpress:*:*"
+        ],
+        "packageName": "cluevo-lms",
+        "packageType": "wordpress-plugin",
+        "product": "CLUEVO LMS, E-Learning Platform",
+        "repo": "https://plugins.svn.wordpress.org/cluevo-lms",
+        "vendor": "cluevo",
+        "versions": [
+          {
+            "lessThanOrEqual": "1.13.2",
+            "status": "affected",
+            "version": "0",
+            "versionType": "semver"
+          }
+        ]
+      }
+    ],
+    "providerMetadata": {
+      "orgId": "00000000-0000-4000-8000-000000000000",
+      "shortName": "anchoreadp"
+    }
+  }
+}