CVE-2021-24170

High PUBLISHED

User Profile Picture < 2.5.0 - Sensitive Information Disclosure

Unknown · User Profile Picture

Not yet in CISA KEV

Exploited in the wild PoC available

Recommended Action

Prioritize remediation. Validate affected assets and apply vendor fixes on an accelerated timeline.

Confidence
High
Exploitation Status
Exploited in the wild
Observed in Sensors
No
Attempts (30d)
Unique Attacker IPs
CISA KEV
Not yet in CISA KEV
CVSS / EPSS
7.5 High EPSS 0.6%

At a Glance

The REST API endpoint get_users in the User Profile Picture WordPress plugin before 2.5.0 returned more information than was required for its functionality to users with the upload_files capability. This included password hashes, hashed user activation keys, usernames, emails, and other less sensitive information.

nuclei_scanner wordpress
CVE Published
Apr 05, 2021
Exploitation Reported
Mar 03, 2021
CVSS
7.5 High
EPSS
0.6%
Remote Low complexity No user interaction Unauthenticated

Affected Versions

Vendor Product Version Status
Unknown
User Profile Picture

2.5.0 to < 2.5.0

Affected

CVE References

Recommended Actions

  • Prioritize remediation. Validate affected assets and apply vendor fixes on an accelerated timeline.
  • Check enrichment artifacts for scanner coverage and available PoCs before rolling remediation validation.
  • Use the Pro API to automate enrichment, telemetry, and workflow delivery for VM, SOC, and CTI pipelines.