WordPress Plugin Vulnerabilities

Spectra Pro < 1.1.6 - Authenticated (Author+) Privilege Escalation

Description

The Spectra Pro plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 1.1.5. This is due to the plugin allowing lower-privileged users to create registration forms and set the default role to administrator This makes it possible for authenticated attackers, with author-level access and above, to create administrator-level accounts.

Affects Plugins

Plugin icon
spectra-pro
Fixed in 1.1.6

References

CVE
CVE-2024-3828
URL
https://www.wordfence.com/threat-intel/vulnerabilities/id/e23e7d66-4b57-4feb-bf77-46238bc6ce7c

Classification

Type
PRIVESC
OWASP top 10
A2: Broken Authentication and Session Management
CWE
CWE-269
CVSS
8.8 (high)

Miscellaneous

Original Researcher
Ngô Thiên An (ancorn_)
Verified
No
WPVDB ID
3e90f5cc-c1c8-4854-8737-1133022d4451

Timeline

Publicly Published
2024-05-09 (about 1 year ago)
Added
2024-05-09 (about 1 year ago)
Last Updated
2024-05-09 (about 1 year ago)

Other

Published
Title
Published
2022-07-06
Title
Simple Membership < 4.1.3 - Unauthenticated Membership Privilege Escalation
Published
2025-08-29
Title
PostX < 4.1.36 - Authenticated (Editor+) Privilege Escalation
Published
2025-06-19
Title
Selling Commander for WooCommerce <= 1.2.46 - Unauthenticated Privilege Escalation
Published
2025-05-19
Title
Motors < 5.6.68 - Unauthenticated Privilege Escalation via Password Update/Account Takeover
Published
2016-04-05
Title
User Role Editor <= 4.24 - Privilege Escalation