License Manager for WooCommerce < 3.0.7 – Improper Authorization to Authenticated(Contributor+) Sensitive Information Exposure | CVE 2024-1639 | Plugin Vulnerabilities

Description

The License Manager for WooCommerce plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the showLicenseKey() and showAllLicenseKeys() functions in all versions up to, and including, 3.0.6. This makes it possible for authenticated attackers, with admin dashboard access (contributors by default due to WooCommerce) to view arbitrary decrypted license keys. The functions contain a referrer nonce check. However, these can be retrieved via the dashboard through the "license" JS variable. Please note that the version in trunk is patched, however, the 3.0.7 tagged version is not.

Affects Plugins

license-manager-for-woocommerce

Fixed in 3.0.7

References

CVE

URL

https://www.wordfence.com/threat-intel/vulnerabilities/id/92e444db-72d5-444f-811e-ade0bc097769

Classification

Type

NO AUTHORISATION

OWASP top 10

A5: Broken Access Control

CWE

CVSS

Miscellaneous

Original Researcher

Lucio Sá

Verified

No

WPVDB ID

02a4f0c3-9b8d-42fb-a692-50739290d76f

Timeline

Publicly Published

2024-06-20 (about 1 year ago)

Added

2024-06-20 (about 1 year ago)

Last Updated

2024-07-02 (about 1 year ago)

Other

Published

Title

Published

2025-03-13

Title

JobCareer | Job Board Responsive WordPress Theme <= 7.1 - Missing Authorization to Authenticated (Subscriber+) Multiple Administrative Actions

Published

2025-04-01

Title

Theater for WordPress < 0.18.8 - Missing Authorization

Published

2024-03-28

Title

Pods < 3.1 - Contributor+ Pods/Users Creation

Published

2026-02-12

Title

Passster < 4.2.26 - Missing Authorization

Published

2024-07-22

Title

Icegram < 3.1.25 - Missing Authorization to Unauthenticated Message Duplication