WordPress Plugin Vulnerabilities

WatchTowerHQ < 3.10.4 - Authentication Bypass to Administrator due to Missing Empty Value Check

Description

The plugin is vulnerable to authentication bypass due to the 'watchtower_ota_token' default value is empty, and the not empty check is missing in the 'Password_Less_Access::login' function. This makes it possible for unauthenticated attackers to log in to the WatchTowerHQ client administrator user.

Affects Plugins

Plugin icon
watchtowerhq
Fixed in 3.10.4

References

CVE
CVE-2024-9933
URL
https://www.wordfence.com/threat-intel/vulnerabilities/id/50349086-e7b0-4f73-8722-1367cc05180e

Classification

Type
AUTHBYPASS
OWASP top 10
A2: Broken Authentication and Session Management
CWE
CWE-287
CVSS
9.8 (critical)

Miscellaneous

Original Researcher
István Márton
Verified
No
WPVDB ID
2a027bd5-4c1b-42fa-92dc-1d780760ad75

Timeline

Publicly Published
2024-10-25 (about 1 year ago)
Added
2024-10-29 (about 1 year ago)
Last Updated
2024-11-05 (about 1 year ago)

Other

Published
Title
Published
2024-03-21
Title
Inline Related Posts < 3.6.0 - Subscriber+ Password Protected Post Read
Published
2025-03-06
Title
Homey < 2.4.4 - Limited Authentication Bypass
Published
2026-01-29
Title
Booked <= 3.0.0 - Authentication Bypass
Published
2024-10-22
Title
ProfilePress - Pro < 4.11.2 - Authentication Bypass
Published
2015-05-04
Title
Pie Register 2.0.14-2.0.15 - Privilege Escalation