CVE-2021-24284 Scanner
Detects 'Arbitrary File Upload' vulnerability in Kaswara Modern VC Addons plugin for WordPress affects v. through 3.0.1.
Short Info
Level
Critical
Single Scan
Single Scan
Can be used by
Asset Owner
Estimated Time
10 sec
Time Interval
696 sec
Scan only one
Domain, Ipv4
Toolbox
-
The Kaswara Modern VC Addons plugin for WordPress is a powerful tool used to enhance the design capabilities of websites. It provides a range of features to help users create unique and visually stunning pages with ease. This plugin allows website owners to customize their pages with various elements, such as icons and fonts, without having to write any code themselves. It is an excellent choice for those looking to create a high-quality and professional-looking website quickly.
The CVE-2021-24284 vulnerability detected in the Kaswara Modern VC Addons plugin is a significant security risk that could have serious consequences for any website owner. This vulnerability allows hackers to upload arbitrary files to the wp-content/uploads/kaswara/fonts_icon directory without any authentication. The files could contain malicious code that could compromise the security of the website and its users. This flaw could be exploited remotely and with relative ease.
Exploiting this vulnerability could lead to severe consequences for any website owner. Hackers could upload malicious files to the website, stealing sensitive information or infecting users' devices with malware. They could also use the website as a platform to launch more significant attacks, such as Distributed Denial of Service (DDoS) attacks, which could bring down the website altogether. Any website owner using the Kaswara Modern VC Addons plugin is urged to take this vulnerability seriously and take appropriate action to protect their website and their users.
By subscribing to the pro features of the s4e.io platform, readers of this article can easily and quickly learn about vulnerabilities in their digital assets. The platform provides comprehensive security information, including identification of vulnerabilities, risk level, and suggested mitigation strategies. By understanding the risks to their websites, website owners can take proactive measures to protect themselves and their users. Don't take chances with the security of your website – sign up to s4e.io today.
REFERENCES