WordPress Social Login and Register (Discord, Google, Twitter, LinkedIn) < 7.6.7 – Authenticated (Subscriber+) Privilege Escalation | CVE 2023-47683 | Plugin Vulnerabilities

Description

The WordPress Social Login and Register (Discord, Google, Twitter, LinkedIn) plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 7.6.6. This is due to the plugin improperly restricting user meta values that can be updated and allowing users to control a user role update during a social login through the custom registration form. This makes it possible for authenticated attackers, with subscriber-level access and above, to escalate their privileges to that of an administrator. We believe that this vulnerability requires the Custom Registration Add-on to be enabled, however, this is simply based on our assessment with the limited information available.

Affects Plugins

miniorange-login-openid

Fixed in 7.6.7

References

CVE

URL

https://www.wordfence.com/threat-intel/vulnerabilities/id/45668368-5846-41bb-b862-dfeb283e83cf

Classification

Type

PRIVESC

OWASP top 10

A2: Broken Authentication and Session Management

CWE

CVSS

Miscellaneous

Original Researcher

Rafie Muhammad

Verified

No

WPVDB ID

2b2f08c7-cc04-4657-ad64-99c168f7773d

Timeline

Publicly Published

2023-11-09 (about 2 years ago)

Added

2023-11-23 (about 2 years ago)

Last Updated

2024-01-22 (about 2 years ago)

Other

Published

Title

Published

2024-03-29

Title

WholesaleX < 1.3.3 - Unauthenticated Privilege Escalation

Published

2025-02-28

Title

Nokri < 1.6.3 - Unauthenticated Arbitrary Password Change

Published

2020-11-09

Title

Ultimate Member < 2.1.12 - Unauthenticated Privilege Escalation via User Meta

Published

2026-01-21

Title

Lawyer Directory < 1.3.4 - Subscriber+ Privilege Escalation

Published

2024-09-06

Title

WPCOM Member < 1.5.3 - Unauthenticated Privilege Escalation via User Meta