WordPress Plugin Vulnerabilities

Woostify Sites Library < 1.4.8 - Subscriber+ Arbitrary Options Update to DoS

Description

The plugin does not have authorisation in an AJAX action, allowing any authenticated users, such as subscriber to update arbitrary blog options and set them to 'activated' which could lead to DoS when using a specific option name

Proof of Concept

Affects Plugins

Plugin icon
woostify-sites-library
Fixed in 1.4.8

References

CVE
CVE-2023-6279

Classification

Type
NO AUTHORISATION
OWASP top 10
A5: Broken Access Control
CWE
CWE-862
CVSS
7.1 (high)

Miscellaneous

Original Researcher
Krzysztof Zając (CERT PL)
Submitter
Krzysztof Zając (CERT PL)
Submitter website
https://cert.pl
Submitter twitter
cert_polska_en
Verified
Yes
WPVDB ID
626bbc7d-0d0f-4418-ac61-666278a1cbdb

Timeline

Publicly Published
2024-01-05 (about 2 years ago)
Added
2024-01-05 (about 2 years ago)
Last Updated
2024-01-05 (about 2 years ago)

Other

Published
Title
Published
2025-10-16
Title
Event Tickets < 5.26.4 - Missing Authorization
Published
2025-07-22
Title
Realty Portal – Agent <= 0.3.9 - Missing Authorization to Authenticated (Subscriber+) Privilege Escalation via rp_user_profile() Function
Published
2024-12-14
Title
Popup Surveys & Polls for WordPress (Mare.io) <= 1.36 - Missing Authorization
Published
2023-01-10
Title
Royal Elementor Addons < 1.3.60 - Subscriber+ Template Kit Import
Published
2024-12-03
Title
Accessibility by AllAccessible < 1.3.5 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Option Update