CVE-2021-4380 Scanner
CVE-2021-4380 Scanner - Unauthorized Admin Access vulnerability in Pinterest Automatic
Short Info
Level
Single Scan
Single Scan
Can be used by
Asset Owner
Estimated Time
10 seconds
Time Interval
25 days 19 hours
Scan only one
Domain, Subdomain, IPv4
Toolbox
-
The Pinterest Automatic plugin is widely used on WordPress websites to automate the pinning of images from the site to Pinterest. It's typically employed by bloggers, digital marketers, and businesses looking to enhance their social media presence by systematically sharing content on Pinterest. The plugin is integrated directly into the WordPress ecosystem, allowing seamless management of Pinterest activities directly from the WordPress dashboard. Users can schedule pins, auto-publish from WordPress to Pinterest, and configure pin details such as descriptions and board locations. The plugin thus plays a crucial role in streamlining social media marketing efforts for many websites using WordPress. However, anything that bypasses user authentication settings can considerably elevate risks, as in the case with the unauthorized admin access vulnerability.
The unauthorized admin access vulnerability in Pinterest Automatic is significant due to its ability to bypass security measures that protect WordPress sites. This vulnerability, identified by CVE-2021-4380, results from insufficient capability checks within the plugin, allowing unauthorized modifications to site options. Exploiting such a flaw could enable attackers to update plugin settings without legitimate credentials. This type of vulnerability is particularly dangerous as it can result in unauthorized access and control over a website's administrative functions. It's crucial for users of the affected plugin versions to be aware of this vulnerability to mitigate potential risks it poses.
Technical exploration of this vulnerability revealed that the endpoints within the Pinterest Automatic plugin, specifically the `wp_pinterest_automatic_parse_request` function and `process_form.php`, lack sufficient authorization checks. HTTP requests can directly exploit these endpoints, enabling changes to be made in the website's options without any form of validation or checks on the user's authority to perform such actions. This lack of checks provides a clear path for attackers to perform unauthorized option updates. Additionally, crafting specific POST requests with the altered blog descriptions enables adversaries to redirect legitimate visitors or even create new administrative user accounts without detection.
If exploited, this vulnerability could allow malicious actors to gain administrative control over a WordPress site, thereby enabling them to execute arbitrary operations, including creating or deleting user accounts, altering website content, and redirecting site traffic. Such an attack could severely affect website integrity and lead to a breach of user trust, with further repercussions such as data theft or website defacement. The severity of this vulnerability underscores the importance of prompt remediation and updates to protect affected systems.
REFERENCES
- https://nvd.nist.gov/vuln/detail/CVE-2021-4380
- https://wpscan.com/vulnerability/ffd344fd-de2c-4f27-8932-41aa0a3c3d05
- https://www.acunetix.com/vulnerabilities/web/wordpress-plugin-pinterest-automatic-pin-security-bypass-4-14-3/
- https://www.wordfence.com/threat-intel/vulnerabilities/id/e4fdc902-4cfe-4116-a294-9a0fcb2de346?source=cve
- https://github.com/20142995/nuclei-templates
