WordPress Plugin Vulnerabilities

Profile Builder < 3.10.8 - Contributor+ User Metadata Disclosure

Description

The plugin is vulnerable to unauthorized access of data due to a missing capability check on the wppb_toolbox_usermeta_handler function allowing authenticated attackers, with contributor-level access and above, to expose sensitive information within user metadata.

Affects Plugins

Plugin icon
profile-builder
Fixed in 3.10.8

References

CVE
CVE-2023-6504
URL
https://www.wordfence.com/threat-intel/vulnerabilities/id/f515ccf8-7231-4728-b155-c47049087d42

Classification

Type
IDOR
OWASP top 10
A5: Broken Access Control
CWE
CWE-639
CVSS
4.3 (medium)

Miscellaneous

Original Researcher
Francesco Carlucci
Verified
No
WPVDB ID
a021f0cd-da5b-4f88-8726-d412371f67f0

Timeline

Publicly Published
2024-01-05 (about 2 years ago)
Added
2024-01-05 (about 2 years ago)
Last Updated
2024-01-05 (about 2 years ago)

Other

Published
Title
Published
2024-06-13
Title
LatePoint Plugin < 4.9.9.1 - Missing Authorization and Sensitive Information Exposure via IDOR
Published
2025-05-16
Title
WP JobHunt <= 7.1 - Unauthenticated Insecure Direct Object Reference
Published
2025-12-15
Title
FAPI Member <= 2.2.29 - Unauthenticated Insecure Direct Object Reference
Published
2025-01-10
Title
Unlimited Theme Addon For Elementor and WooCommerce < 1.2.3 - Authenticated (Contributor+) Post Disclosure
Published
2025-09-22
Title
Academy LMS < 3.3.5 - Authenticated (Academy Instructor+) Insecure Direct Object Reference