ALL In One Custom Login Page < 7.1.2 – Missing Authorization to Authenticated (Subscriber+)Privilege Escalation | CVE 2024-12594 | Plugin Vulnerabilities

Description

The Custom Login Page Styler – Login Protected Private Site , Change wp-admin login url , WordPress login logo , Temporary admin login access , Rename login , Login customizer, Hide wp-login – Limit Login Attempts – Locked Site plugin for WordPress is vulnerable to privilege escalation due to a missing capability check on the 'lps_generate_temp_access_url' AJAX action in all versions up to, and including, 7.1.1. This makes it possible for authenticated attackers, with Subscriber-level access and above, to login as other users such as subscribers.

Affects Plugins

login-page-styler

Fixed in 7.1.2

References

CVE

URL

https://www.wordfence.com/threat-intel/vulnerabilities/id/8e50c519-7d79-4270-92e8-75e54bb08cff

Classification

Type

NO AUTHORISATION

OWASP top 10

A5: Broken Access Control

CWE

CVSS

Miscellaneous

Original Researcher

Lucio Sá

Verified

No

WPVDB ID

2513e295-ec6e-4a89-a3f4-49922e99c06a

Timeline

Publicly Published

2024-12-23 (about 1 year ago)

Added

2024-12-23 (about 1 year ago)

Last Updated

2024-12-24 (about 1 year ago)

Other

Published

Title

Published

2025-02-03

Title

Awesome Event Booking < 2.7.5 - Missing Authorization

Published

2024-12-11

Title

Awesome Support < 6.3.2 - Missing Authorization

Published

2024-07-01

Title

Woffice Core < 5.4.9 - Missing Authorization

Published

2024-02-27

Title

Envo's Elementor Templates & Widgets for WooCommerce < 1.4.5 - Subscriber+ Template Creation

Published

2025-05-12

Title

TheGem < 5.10.3.1 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Theme Options Update