WordPress Plugin Vulnerabilities

Social Connect <= 1.2 - Authentication Bypass

Description

The Social Connect plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 1.2. This is due to insufficient verification on the OpenID server being supplied during the social login through the plugin. This makes it possible for unauthenticated attackers to log in as any existing user on the site, such as an administrator, if they have access to the email.

Affects Plugins

Plugin icon
social-connect
No known fix

References

CVE
CVE-2024-4393
URL
https://www.wordfence.com/threat-intel/vulnerabilities/id/2882d9dd-0c73-4c9a-99cb-d10900503103

Classification

Type
AUTHBYPASS
OWASP top 10
A2: Broken Authentication and Session Management
CWE
CWE-287
CVSS
9.8 (critical)

Miscellaneous

Original Researcher
István Márton
Verified
No
WPVDB ID
bf8fe1b0-28b6-4c30-8db2-f32842acbcd3

Timeline

Publicly Published
2024-05-07 (about 2 years ago)
Added
2024-05-07 (about 2 years ago)
Last Updated
2024-05-07 (about 2 years ago)

Other

Published
Title
Published
2025-02-28
Title
Academist Membership < 1.2 - Authentication Bypass
Published
2014-08-01
Title
LayerSlider 4.6.1 - Remote Path Traversal File Access
Published
2024-10-25
Title
1-Click Login: Passwordless Authentication 1.4.5 - Authentication Bypass
Published
2023-01-27
Title
ContentStudio < 1.2.6 - Authorisation Bypass
Published
2026-02-26
Title
Japanized for WooCommerce < 2.8.5 - Missing Authorization to Unauthenticated Paidy Order Manipulation