CVE-2021-24968: 
WordPress vulnerability analysis and mitigation

CVE-2021-24968 affects the Ultimate FAQ WordPress plugin versions prior to 2.1.2. The vulnerability was discovered by Krzysztof Zając and publicly disclosed on December 27, 2021. This security issue impacts the plugin's FAQ creation functionality, potentially affecting WordPress installations using vulnerable versions of the Ultimate FAQ plugin (WPScan).

The vulnerability stems from missing capability and CSRF (Cross-Site Request Forgery) checks in the ewdufaqwelcomeaddfaq and ewdufaqwelcomeaddfaq_page AJAX actions. These actions are accessible to any authenticated users. The vulnerability has been assigned a CVSS score of 4.3 (Medium) and is classified under CWE-862, falling into the OWASP Top 10 category A5: Broken Access Control (WPScan).

The vulnerability allows any authenticated user, including those with minimal privileges such as Subscriber role, to create FAQ pages and FAQ questions without proper authorization. This could lead to unauthorized content creation and potential website content manipulation (WPScan).

The vulnerability has been fixed in Ultimate FAQ version 2.1.2. Users are advised to update to this version or later to mitigate the security risk. The fix was implemented through a changeset that can be referenced at the WordPress plugins repository (WordPress Plugins).