WordPress Plugin Vulnerabilities

Jupiter X Core < 4.7.8 - Limited Unauthenticated Authentication Bypass to Account Takeover

Description

The Jupiter X Core plugin for WordPress is vulnerable to authentication bypass in all versions up to, and including, 4.7.5. This is due to improper authentication via the Social Login widget. This makes it possible for unauthenticated attackers to log in as the first user to have logged in with a social media account, including administrator accounts. Attackers can exploit the vulnerability even if the Social Login element has been disabled, as long as it was previously enabled and used. The vulnerability was partially patched in version 4.7.5, and fully patched in version 4.7.8.

Affects Plugins

Plugin icon
jupiterx-core
Fixed in 4.7.8

References

CVE
CVE-2024-7781
URL
https://www.wordfence.com/threat-intel/vulnerabilities/id/efd279c2-9e95-45bd-9494-fb53a6333c65

Classification

Type
ACCESS CONTROLS
OWASP top 10
A5: Broken Access Control
CWE
CWE-284
CVSS
8.1 (high)

Miscellaneous

Original Researcher
Geo Void
Verified
No
WPVDB ID
5a6fc6f9-a997-4901-a8ce-5dc8edbfd537

Timeline

Publicly Published
2024-09-25 (about 1 year ago)
Added
2024-09-25 (about 1 year ago)
Last Updated
2024-09-25 (about 1 year ago)

Other

Published
Title
Published
2021-10-20
Title
Responsive Image Slider, Photo Gallery And Carousel < 1.3.6 - Subscriber+ Arbitrary Post Access
Published
2021-04-30
Title
Download Manager < 3.1.23 - Unauthorised Asset Manager Usage
Published
2023-06-02
Title
VK Blocks < 1.58.0.0 - Contributor+ Settings Update via REST API
Published
2020-09-28
Title
WP Courses < 2.0.29 - Broken Access Controls leading to Courses Content Disclosure
Published
2021-09-20
Title
WP Import Export Lite < 3.9.5 - Subscriber+ Arbitrary Blog Options Update