CVE-2021-24226— AccessAlly < 3.5.7 - $_SERVER Superglobal Leakage
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2021-24226
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
AccessAlly < 3.5.7 - $_SERVER Superglobal Leakage
Source: NVD (National Vulnerability Database)
Vulnerability Description
In the AccessAlly WordPress plugin before 3.5.7, the file "resource/frontend/product/product-shortcode.php" responsible for the [accessally_order_form] shortcode is dumping serialize($_SERVER), which contains all environment variables. The leakage occurs on all public facing pages containing the [accessally_order_form] shortcode, no login or administrator role is required.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
信息暴露
Source: NVD (National Vulnerability Database)
Vulnerability Title
WordPress 插件信息泄露漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
WordPress是WordPress(Wordpress)基金会的一套使用PHP语言开发的博客平台。该平台支持在PHP和MySQL的服务器上架设个人博客网站。 AccessAlly WordPress插件 3.5.7版本之前存在信息泄露漏洞,该漏洞源于插件中负责[accessally_order_form]短代码的文件“ resource / frontend / product / product-shortcode.php”正在转储包含所有环境变量的serialize($ _ SERVER)。在包含
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| Unknown | AccessAlly | 3.5.6 ~ 3.5.6* | - |
II. Public POCs for CVE-2021-24226
| # | POC Description | Source Link | Shenlong Link |
|---|---|---|---|
| 1 | WordPress AccessAlly plugin before 3.5.7 allows sensitive information leakage because the file \"resource/frontend/product/product-shortcode.php\" (which is responsible for the [accessally_order_form] shortcode) dumps serialize($_SERVER), which contains all environment variables. The leakage occurs on all public facing pages containing the [accessally_order_form] shortcode, and no login or administrator role is required. | https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2021/CVE-2021-24226.yaml | POC Details |
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2021-24226
请登录查看更多情报信息。
- https://wpscan.com/vulnerability/8e3e89fd-e380-4108-be23-00e87fbaad16x_refsource_CONFIRM
- https://nvd.nist.gov/vuln/detail/CVE-2021-24226
Same Patch Batch · Unknown · 2021-04-12 · 14 CVEs total
| CVE-2021-24231 | Patreon WordPress < 1.7.0 - CSRF to Disconnect Sites From Patreon | |
| CVE-2021-24230 | Patreon WordPress < 1.7.0 - CSRF to Overwrite/Create User Meta | |
| CVE-2021-24229 | Patreon WordPress < 1.7.2 - Reflected XSS on patreon_save_attachment_patreon_level AJAX ac | |
| CVE-2021-24228 | Patreon WordPress < 1.7.2 - Reflected XSS on Login Form | |
| CVE-2021-24227 | Patreon WordPress < 1.7.0 - Unauthenticated Local File Disclosure | |
| CVE-2021-24225 | Advanced Booking Calendar < 1.6.7 - Authenticated Reflected Cross-Site Scripting (XSS) | |
| CVE-2021-24224 | Easy Form Builder <= 1.0 - Authenticated Arbitrary File Upload | |
| CVE-2021-24223 | N5 Upload Form <= 1.0 - Unauthenticated Arbitrary File Upload to RCE | |
| CVE-2021-24222 | WP-Curricul Vitea Free <= 6.3 - Unauthenticated Arbitrary File Upload to RCE | |
| CVE-2021-24221 | Quiz And Survey Master < 7.1.12 - Authenticated SQL injection via shortcode | |
| CVE-2021-24218 | Facebook for WordPress 3.0.0-3.0.3 - CSRF to Stored XSS and Settings Deletion | |
| CVE-2021-24217 | Facebook for WordPress < 3.0.0 - PHP Object Injection with POP Chain | |
| CVE-2021-24215 | Controlled Admin Access < 1.5.2 - Improper Access Control & Privilege Escalation |
IV. Related Vulnerabilities
Same vendor: Unknown
- CVE-2026-6433
Custom CSS JS PHP <= 2.0.7 - Unauthenticated SQL Injection t - CVE-2026-4935
SureTriggers < 1.1.23 – Unauthenticated SQLi - CVE-2026-5335
Magic Export & Import < 1.2.0 - Unauthenticated PII Disclosu - CVE-2026-5337
Frontend File Manager Plugin <= 23.6 - Subscriber+ Arbitrary - CVE-2026-5306
Check & Log Email < 2.0.13 - Unauthenticated Stored XSS
Same weakness: CWE-200
- CVE-2026-42333
quarkus-openapi-generator has overly broad path-parameter ma - CVE-2026-8198
Activity Logs, User Activity Tracking, Multisite Activity Lo - CVE-2026-42456
AnythingLLM: Cross-User TTS Audio Disclosure via Chat ID (ID - CVE-2026-41520
Cillium exposes sensitive information included in the cilium - CVE-2026-25199
Apache CloudStack: Proxmox Extension Allows Unauthorized Cro
V. Comments for CVE-2021-24226
No comments yet