WordPress Plugin Vulnerabilities

BestWebSoft's Like & Share < 2.74 - Unauthenticated Password Protected Post Read

Description

The plugin discloses the content of password protected posts to unauthenticated users via a meta tag

Proof of Concept

In the web browser, view the source of any password protected post and check the og:description meta tag

Affects Plugins

Plugin icon
facebook-button-plugin
Fixed in 2.74

References

CVE
CVE-2023-6250

Classification

Type
AUTHBYPASS
OWASP top 10
A2: Broken Authentication and Session Management
CWE
CWE-287
CVSS
5.3 (medium)

Miscellaneous

Original Researcher
Krzysztof Zając (CERT PL)
Submitter
Krzysztof Zając (CERT PL)
Submitter website
https://cert.pl
Submitter twitter
cert_polska_en
Verified
Yes
WPVDB ID
6cad602b-7414-4867-8ae2-f0b846c4c8f0

Timeline

Publicly Published
2023-11-29 (about 7 months ago)
Added
2023-11-29 (about 7 months ago)
Last Updated
2023-11-29 (about 7 months ago)

Other

Published
Title
Published
2022-10-31
Title
WP User Frontend < 3.5.29 - Obscure Registration as Admin
Published
2023-07-18
Title
OAuth Single Sign On – SSO (OAuth Client) < 6.23.4 - Improper Authentication
Published
2021-07-20
Title
NEX Forms < 7.8.8 - Authentication Bypass for PDF Reports
Published
2020-01-16
Title
WP Database Reset < 3.15 - Unauthenticated Database Reset
Published
2022-12-28
Title
User Verification < 1.0.94 - Authentication Bypass