CVE-2021-24626

Name of the Vulnerable Software and Affected Versions Chameleon CSS WordPress plugin versions 1.2 and earlier

Description The issue allows any authenticated user to perform unauthorized actions due to the lack of CSRF and capability checks in all AJAX calls. Specifically, the remove css AJAX call is vulnerable to SQL Injection because it does not sanitize or escape the css id POST parameter before using it in a SQL statement. This allows attackers to inject malicious SQL code.

Recommendations For Chameleon CSS WordPress plugin versions 1.2 and earlier, update to a version that includes CSRF and capability checks for all AJAX calls and properly sanitizes user input to prevent SQL Injection. As a temporary workaround, consider restricting access to the remove css AJAX call until a patch is available. Avoid using the css id parameter in the affected AJAX endpoint until the issue is resolved.