CVEs-PoC/2021/CVE-2021-24978.md

### [CVE-2021-24978](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-24978)
![](https://img.shields.io/static/v1?label=Product&message=OSMapper&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=2.1.5%3C%3D%202.1.5%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-862%20Missing%20Authorization&color=brighgreen)

### Description

The OSMapper WordPress plugin through 2.1.5 contains an AJAX action to delete a plugin related post type named 'map' and is registered with the wp_ajax_nopriv prefix, making it available to unauthenticated users. There is no authorisation, CSRF and checks in place to ensure that the post to delete is a map one. As a result, unauthenticated user can delete arbitrary posts from the blog

### POC

#### Reference
- https://wpscan.com/vulnerability/f0f2af29-e21e-4d16-9424-1a49bff7fb86

#### Github
No PoCs found on GitHub currently.