WordPress Plugin Vulnerabilities

UserPro < 5.1.5 - Missing Authorization to Arbitrary Shortcode Execution via userpro_shortcode_template

Description

The UserPro plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the 'userpro_shortcode_template' function in versions up to, and including, 5.1.4. This makes it possible for unauthenticated attackers to arbitrary shortcode execution. An attacker can leverage CVE-2023-2446 to get sensitive information via shortcode.

Affects Plugins

Plugin icon
userpro
Fixed in 5.1.5

References

CVE
CVE-2023-2448
URL
https://www.wordfence.com/threat-intel/vulnerabilities/id/7cbe9175-4a6f-4eb6-8d31-9a9fda9b4f40

Classification

Type
NO AUTHORISATION
OWASP top 10
A5: Broken Access Control
CWE
CWE-862
CVSS
6.5 (medium)

Miscellaneous

Original Researcher
István Márton
Verified
No
WPVDB ID
a24a6b58-95ee-434a-a7d1-fb2cf820f0df

Timeline

Publicly Published
2023-11-21 (about 2 years ago)
Added
2023-11-23 (about 2 years ago)
Last Updated
2024-01-22 (about 2 years ago)

Other

Published
Title
Published
2025-09-26
Title
WP Directory Kit < 1.4.1 - Missing Authorization
Published
2024-12-12
Title
Arabic Webfonts <= 1.4.6 - Missing Authorization
Published
2025-06-18
Title
GiveWP – Donation Plugin and Fundraising Platform < 4.3.1 - Missing Authorization To Authenticated (Contributor+) Campaign Data View And Modification
Published
2025-10-29
Title
AppPresser – Mobile App Framework < 4.5.1 - Missing Authorization to Unauthenticated Limited Sensitive Information Exposure
Published
2025-10-09
Title
Media Library Assistant < 3.30 - Missing Authorization