Smart Custom Fields < 5.0.0 – Missing Authorization to Authenticated (Subscriber+) Post Content Disclosure | CVE 2024-1995 | Plugin Vulnerabilities

Description

The Smart Custom Fields plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the relational_posts_search() function in all versions up to, and including, 4.2.2. This makes it possible for authenticated attackers, with subscrber-level access and above, to retrieve post content that is password protected and/or private.

Affects Plugins

smart-custom-fields

Fixed in 5.0.0

References

CVE

URL

https://www.wordfence.com/threat-intel/vulnerabilities/id/e966a266-4265-4a72-8a50-e872805219a7

Classification

Type

NO AUTHORISATION

OWASP top 10

A5: Broken Access Control

CWE

CVSS

Miscellaneous

Original Researcher

Lucio Sá

Verified

No

WPVDB ID

38496550-b9aa-4360-a574-408edd1a3660

Timeline

Publicly Published

2024-03-19 (about 2 years ago)

Added

2024-03-19 (about 2 years ago)

Last Updated

2024-03-19 (about 2 years ago)

Other

Published

Title

Published

2026-01-05

Title

Quiz and Survey Master (QSM) < 10.3.2 - Missing Authorization to Unpublished, Private And Password-Protected Quiz Information Disclosure And Image Response Uploads

Published

2024-11-12

Title

Hash Elements < 1.4.8 - Missing Authorization to Unauthenticated Draft Post Title Exposure

Published

2024-01-31

Title

PropertyHive < 2.0.7 - Missing Authorization via activate_pro_feature

Published

2025-01-06

Title

Croma Music < 3.6.1 - Authenticated (Subscriber+) Arbitrary Options Update in ironMusic_ajax

Published

2026-05-01

Title

Royal Addons for Elementor < 1.7.1057 - Unauthenticated Form Action Meta Modification