CVE-2021-4337

Summary

Sixteen XforWooCommerce Add-On Plugins for WordPress are vulnerable to authorization bypass due to a missing capability check on the wp_ajax_svx_ajax_factory function in various versions listed below. This makes it possible for authenticated attackers, with subscriber-level permissions and above, to read, edit, or delete WordPress settings, plugin settings, and to arbitrarily list all users on a WordPress website. The plugins impacted are: Product Filter for WooCommerce < 8.2.0, Improved Product Options for WooCommerce < 5.3.0, Improved Sale Badges for WooCommerce < 4.4.0, Share, Print and PDF Products for WooCommerce < 2.8.0, Product Loops for WooCommerce < 1.7.0, XforWooCommerce < 1.7.0, Package Quantity Discount < 1.2.0, Price Commander for WooCommerce < 1.3.0, Comment and Review Spam Control for WooCommerce < 1.5.0, Add Product Tabs for WooCommerce < 1.5.0, Autopilot SEO for WooCommerce < 1.6.0, Floating Cart < 1.3.0, Live Search for WooCommerce < 2.1.0, Bulk Add to Cart for WooCommerce < 1.3.0, Live Product Editor for WooCommerce < 4.7.0, and Warranties and Returns for WooCommerce < 5.3.0.

Affected Software

VendorProductVersion RangeStatus
XforWooCommercePackage Quantity Discount0 < 1.2.0affected
XforWooCommercePrice Commander for WooCommerce0 < 1.3.0affected
XforWooCommerceBulk Add to Cart for WooCommerce0 < 1.3.0affected
XforWooCommerceFloating Cart for WooCommerce0 < 1.3.0affected
XforWooCommerceComment and Review Spam Control for WooCommerce0 < 1.5.0affected
XforWooCommerceAdd Product Tabs for WooCommerce0 < 1.5.0affected
XforWooCommerceAutopilot SEO for WooCommerce0 < 1.6.0affected
XforWooCommerceXforWooCommerce0 < 1.7.0affected
XforWooCommerceProduct Loops for WooCommerce0 < 1.7.0affected
XforWooCommerceLive Search for WooCommerce0 < 2.1.0affected
XforWooCommerceShare, Print and PDF Products for WooCommerce0 < 2.8.0affected
XforWooCommerceImproved Sale Badges for WooCommerce0 < 4.4.0affected
XforWooCommerceLive Product Editor for WooCommerce0 < 4.7.0affected
XforWooCommerceWarranties and Returns for WooCommerce0 < 5.3.0affected
XforWooCommerceImproved Product Options for WooCommerce0 < 5.3.0affected
XforWooCommerceProduct Filter for WooCommerce0 < 8.2.0affected

Weaknesses

  • CWE-862: CWE-862 Missing Authorization

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References