WordPress Plugin Vulnerabilities

WP Courses < 2.0.29 - Broken Access Controls leading to Courses Content Disclosure

Description

The plugin does not protect the courses which could be accessed by unauthenticated users using the REST API (/wp-jon/) endpoints. This could result in attackers accessing paying content without authorisation.

Affects Plugins

wp-courses

Fixed in version 2.0.29

References

CVE

CVE-2020-26876

URL

https://www.redtimmy.com/critical-information-disclosure-on-wp-courses-plugin-exposes-private-course-videos-and-materials/

URL

https://packetstormsecurity.com/files/159301/

ExploitDB

48910

Classification

Type

ACCESS CONTROLS

OWASP top 10

A5: Broken Access Control

CWE

CWE-284

Miscellaneous

Original Researcher

Red Timmy

Verified

WPVDB ID

9215b11f-26ae-4a66-9971-bc8347d510e3

Timeline

Publicly Published

2020-09-28 (about 1 years ago)

Added

2020-09-28 (about 1 years ago)

Last Updated

2020-11-03 (about 1 years ago)

Our Other Services

WPScan WordPress Security Plugin