WordPress Plugin Vulnerabilities

CMS Commander < 2.288 - Unauthenticated Authorisation Bypass

Description

The plugin does not use a sufficient unique cryptographic signature in its cmsc_add_site feature, which could allow unauthenticated users to update the _cmsc_public_key settings when the plugin has not been configured yet, and get access to the plugin's remote control features such as creating an administrator access URL

Affects Plugins

Plugin icon
cms-commander-client
Fixed in 2.288

References

CVE
CVE-2023-3325

Miscellaneous

Original Researcher
Lana Codes
Verified
No
WPVDB ID
6797311e-de17-4716-ac93-15522f926c3b

Timeline

Publicly Published
2023-06-19 (about 2 years ago)
Added
2023-06-20 (about 2 years ago)
Last Updated
2023-06-20 (about 2 years ago)

Other

Published
Title
Published
2025-07-24
Title
PPWP < 1.9.11 - Subscriber+ Access Bypass via REST API
Published
2019-09-18
Title
Social Metrics Tracker <= 1.6.8 - Unauthorised Data Export
Published
2024-01-27
Title
BookingPress < 1.0.75 - Unauthenticated Booking Price Manipulation
Published
2020-02-25
Title
Flexible Checkout Fields for WooCommerce < 2.3.2 - Unauthenticated Settings Update
Published
2020-05-07
Title
Ultimate Addons for Elementor < 1.24.2 - Registration Bypass