GamiPress < 6.8.9 – Broken Access Control | CVE 2024-2505 | Plugin Vulnerabilities

Description

The plugin's access control mechanism fails to properly restrict access to its settings, permitting Authors to manipulate requests and extend access to lower privileged users, like Subscribers, despite initial settings prohibiting such access. This vulnerability resembles broken access control, enabling unauthorized users to modify critical plugin configurations.

Proof of Concept

- Inferred parameter values

Administrator > manage_options
Editor > delete_others_posts
Author > publish_posts
Contributor > edit_posts
Subscriber > read

Affects Plugins

Fixed in 6.8.9

References

CVE

Classification

Type

ACCESS CONTROLS

OWASP top 10

A5: Broken Access Control

CWE

CVSS

Miscellaneous

Submitter

cyc707

Verified

Yes

WPVDB ID

9b3d6148-ecee-4e59-84a4-3b3e9898473b

Timeline

Publicly Published

2024-04-08 (about 1 year ago)

Added

2024-04-08 (about 1 year ago)

Last Updated

2024-04-08 (about 1 year ago)

Other

Published

Title

Published

2024-02-19

Title

WPify Woo Czech < 4.0.9 - Missing Authorization

Published

2023-05-08

Title

Download Manager < 3.2.71 - Broken Access Controls

Published

2022-01-24

Title

WP Dependency Installer < 4.3.1 - Subscriber+ Arbitrary Plugin Activation

Published

2021-01-28

Title

uListing < 1.7 - Missing Access Controls

Published

2025-01-16

Title

WP Hotel Booking < 2.1.6 - Missing Authorization