WordPress Plugin Vulnerabilities

Post Form – Registration Form – Profile Form for User Profiles – Frontend Content Forms for User Submissions (UGC) < 2.8.12 - Authenticated (Contributor+) Privilege Escalation

Description

The Post Form – Registration Form – Profile Form for User Profiles – Frontend Content Forms for User Submissions (UGC) plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 2.8.11. This is due to plugin not properly restricting what users have access to set the default role on registration forms. This makes it possible for authenticated attackers, with contributor-level access and above, to create a registration form with a custom role that allows them to register as administrators.

Affects Plugins

Plugin icon
buddyforms
Fixed in 2.8.12

References

CVE
CVE-2024-8246
URL
https://www.wordfence.com/threat-intel/vulnerabilities/id/40760f60-b81a-447b-a2c8-83c7666ce410

Classification

Type
PRIVESC
OWASP top 10
A2: Broken Authentication and Session Management
CWE
CWE-269
CVSS
8.8 (high)

Miscellaneous

Original Researcher
wesley (wcraft)
Verified
No
WPVDB ID
ca0fa099-ad8a-451f-8bb3-2c68def0ac6f

Timeline

Publicly Published
2024-09-13 (about 1 year ago)
Added
2024-09-13 (about 1 year ago)
Last Updated
2024-09-14 (about 1 year ago)

Other

Published
Title
Published
2024-09-30
Title
Echo RSS Feed Post Generator < 5.4.7 - Unauthenticated Privilege Escalation
Published
2024-04-25
Title
WooCommerce Amazon Affiliates < 14.1.0 - Subscriber+ Privilege Escalation
Published
2025-08-21
Title
Miraculous Core < 2.0.8 - Unauthenticated Privilege Escalation
Published
2025-10-30
Title
King Addons for Elementor – Free Elements, Widgets, Templates, and Features for Elementor 24.12.92 - 51.1.14 - Unauthenticated Privilege Escalation
Published
2025-07-31
Title
Service Finder SMS System <= 2.0.0 - Unauthenticated Privilege Escalation