User Registration – Custom Registration Form, Login Form, and User Profile WordPress Plugin < 3.2.0 – Missing Authorization to Authenticated (Subscriber+) Privilege Escalation | CVE 2024-2417 | Plugin Vulnerabilities

Description

The User Registration – Custom Registration Form, Login Form, and User Profile WordPress Plugin plugin for WordPress is vulnerable to privilege escalation due to a missing capability check on the form_save_action() function in all versions up to, and including, 3.1.5. This makes it possible for authenticated attackers, with subscriber-level access and above, to update the registration form and make the default registration role administrator. This subsequently allows the attacker to register an account as an administrator on the site.

Affects Plugins

user-registration

Fixed in 3.2.0

References

CVE

URL

https://www.wordfence.com/threat-intel/vulnerabilities/id/d03459d8-b1f2-4270-a294-403754db1f2f

Classification

Type

NO AUTHORISATION

OWASP top 10

A5: Broken Access Control

CWE

CVSS

Miscellaneous

Original Researcher

Stiofan

Verified

No

WPVDB ID

aa972f9f-159d-4516-9cec-445f59737553

Timeline

Publicly Published

2024-04-19 (about 2 years ago)

Added

2024-04-19 (about 2 years ago)

Last Updated

2024-04-19 (about 2 years ago)

Other

Published

Title

Published

2025-06-27

Title

Dashboard Widget Sidebar <= 1.2.3 - Missing Authorization

Published

2025-05-07

Title

Music Player for WooCommerce < 1.6.0 - Missing Authorization

Published

2025-01-06

Title

RSVP and Event Management < 2.7.14 - Missing Authorization

Published

2024-06-27

Title

Masterstudy Elementor Widgets < 1.2.3 - Missing Authorization

Published

2024-12-22

Title

picu – Online Photo Proofing Gallery < 2.4.1 - Missing Authorization