WordPress Plugin Vulnerabilities

wpCentral < 1.5.1 - Improper Access Control to Privilege Escalation

Description

The flaw allowed anybody to escalate their privileges to those of an administrator, as long as subscriber-level registration was enabled on a given WordPress site with the vulnerable plugin installed.

Proof of Concept

Affects Plugins

Plugin icon
wp-central
Fixed in 1.5.1

References

CVE
CVE-2020-9043
URL
https://www.wordfence.com/blog/2020/02/vulnerability-in-wpcentral-plugin-leads-to-privilege-escalation/

Classification

Type
PRIVESC
OWASP top 10
A2: Broken Authentication and Session Management
CWE
CWE-269
CVSS
8.8 (high)

Miscellaneous

Original Researcher
Chloe Chamberland
Submitter
Chloe Chamberland
Submitter website
https://wordfence.com
Submitter twitter
infosecchloe
Verified
No
WPVDB ID
3789def3-ba22-45d9-9951-ba51684257ba

Timeline

Publicly Published
2020-02-17 (about 6 years ago)
Added
2020-02-17 (about 6 years ago)
Last Updated
2020-09-22 (about 5 years ago)

Other

Published
Title
Published
2024-09-10
Title
WooCommerce Photo Reviews Premium < 1.3.14 - Authentication Bypass to Account Takeover and Privilege Escalation
Published
2024-07-04
Title
Book Your Travel < 8.18.19 - Authenticated (Subscriber+) Privilege Escalation
Published
2025-03-14
Title
uListing <= 2.1.7 - Subscriber+ Privilege Escalation
Published
2023-12-26
Title
Ultimate Addons for Beaver Builder < 1.35.15 - Contributor+ Privilege Escalation
Published
2019-08-09
Title
ND Restaurant Reservations < 1.5 - Unauthenticated Options Change