SmartCrawl WordPress SEO checker < 3.8.3 – Unauthenticated Password Protected Post Disclosure | CVE 2023-5949 | Plugin Vulnerabilities

Description

The plugin does not prevent unauthorised users from accessing password-protected posts' content.

Proof of Concept

As unauthenticated, view the source (via the web browser) of any password protected post and find 
<!-- SEO meta tags powered by SmartCrawl https://wpmudev.com/project/smartcrawl-wordpress-seo/ -->

The content of the post will be disclosed in the meta and script tags after this, example:
<meta name="description" content="pwd protected Secret" 
<script type="application/ld+json">{...,"description":"pwd protected Secret","name":"Protected: PWD Protected Post"}]}</script>

Affects Plugins

Fixed in 3.8.3

References

CVE

Classification

Type

NO AUTHORISATION

OWASP top 10

A5: Broken Access Control

CWE

CVSS

Miscellaneous

Original Researcher

Krzysztof Zając (CERT PL)

Submitter

Krzysztof Zając (CERT PL)

Submitter website

https://cert.pl

Submitter twitter

Verified

Yes

WPVDB ID

3cec27ca-f470-402d-ae3e-271cb59cf407

Timeline

Publicly Published

2023-11-23 (about 2 years ago)

Added

2023-11-23 (about 2 years ago)

Last Updated

2023-11-23 (about 2 years ago)

Other

Published

Title

Published

2024-06-07

Title

Minimal Coming Soon – Coming Soon Page < 2.39 - Missing Authorization to Limited Settings Change

Published

2025-06-27

Title

Spreadconnect <= 2.1.5 - Missing Authorization

Published

2023-05-30

Title

Draw Attention < 2.0.12 - Subscriber+ Unauthorized Featured Image Modification

Published

2025-04-02

Title

Free Woocommerce Product Table View <= 1.78 - Missing Authorization to Arbitrary Content Deletion

Published

2024-06-27

Title

Easy Affiliate Links < 3.7.4 - Missing Authorization to Authenticated (Subscriber+) Settings Reset