WordPress Plugin Vulnerabilities

Button Block – Get fully customizable & multi-functional buttons < 1.1.5 - Authenticated (Contributor+) Post Disclosure

Description

The Button Block – Get fully customizable & multi-functional buttons plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 1.1.4 via the [btn_block] shortcode due to insufficient restrictions on which posts can be included. This makes it possible for authenticated attackers, with Contributor-level access and above, to extract data from password protected, private, or draft posts that they should not have access to.

Affects Plugins

Plugin icon
button-block
Fixed in 1.1.5

References

CVE
CVE-2024-10671
URL
https://www.wordfence.com/threat-intel/vulnerabilities/id/99c7eead-2cf2-4663-9328-671274f3c436

Classification

Type
IDOR
OWASP top 10
A5: Broken Access Control
CWE
CWE-639
CVSS
4.3 (medium)

Miscellaneous

Original Researcher
Francesco Carlucci
Verified
No
WPVDB ID
b925ce35-fbd1-4f92-8860-f7350776a702

Timeline

Publicly Published
2024-11-20 (about 1 year ago)
Added
2024-11-20 (about 1 year ago)
Last Updated
2024-11-21 (about 1 year ago)

Other

Published
Title
Published
2025-11-18
Title
YITH WooCommerce Wishlist < 4.10.1 - Unauthenticated Wishlist Rename via IDOR
Published
2025-03-31
Title
WPCargo Track & Trace <= 8.0.2 - Contributor+ Insecure Direct Object Reference
Published
2026-02-23
Title
Really Simple Security Pro < 9.5.4.1 - Authenticated (Subscriber+) Insecure Direct Object Reference
Published
2023-09-12
Title
wpDiscuz < 7.6.4 - Post Rating Increase/Decrease iva IDOR
Published
2026-01-24
Title
Job Portal < 2.4.4 - Authenticated (Subscriber+) Insecure Direct Object Reference