WordPress Plugin Vulnerabilities

Sign In With Google <= 1.8.0 - Authentication Bypass in authenticate_user

Description

The Sign In With Google plugin for WordPress is vulnerable to authentication bypass in all versions up to, and including, 1.8.0. This is due to the 'authenticate_user' user function not implementing sufficient null value checks when setting the access token and user information. This makes it possible for unauthenticated attackers to log in as the first user who has signed in using Google OAuth, which could be the site administrator.

Affects Plugins

Plugin icon
sign-in-with-google
No known fix

References

CVE
CVE-2024-11015
URL
https://www.wordfence.com/threat-intel/vulnerabilities/id/afe894b0-5e91-4aa2-bbd1-1f74274701cf

Classification

Type
AUTHBYPASS
OWASP top 10
A2: Broken Authentication and Session Management
CWE
CWE-287
CVSS
9.8 (critical)

Miscellaneous

Original Researcher
shaman0x01
Verified
No
WPVDB ID
6cc3d537-5ec6-449a-841b-54d317b9f16d

Timeline

Publicly Published
2024-12-11 (about 1 year ago)
Added
2024-12-11 (about 1 year ago)
Last Updated
2024-12-12 (about 1 year ago)

Other

Published
Title
Published
2024-12-03
Title
Registration Forms – User Registration Forms, Invitation-Based Registrations, Front-end User Profile, Login Form & Content Restriction Social Sites Login < 1.8 - Authentication Bypass via WordPress.com OAuth provider
Published
2025-08-27
Title
RingCentral Communications 1.5 - 1.6.8 - Missing Server‑Side Verification to Authentication Bypass via ringcentral_admin_login_2fa_verify Function
Published
2014-08-01
Title
Wordfence 3.8.1 - Password Creation Restriction Bypass
Published
2026-01-28
Title
Video Conferencing with Zoom API < 4.6.6 - Unauthenticated SDK Signature Generation
Published
2024-10-25
Title
Meetup <= 0.1 - Authentication Bypass