WordPress Plugin Vulnerabilities

Crypto < 2.19 - Authentication Bypass via log_in

Description

The plugin for WordPress is vulnerable to authentication bypass due a to limited arbitrary method call to 'crypto_connect_ajax_process::log_in' function in the 'crypto_connect_ajax_process' function. This makes it possible for unauthenticated attackers to log in as any existing user on the site, such as an administrator, if they have access to the username.

Affects Plugins

Plugin icon
crypto
Fixed in 2.19

References

CVE
CVE-2024-9989
URL
https://www.wordfence.com/threat-intel/vulnerabilities/id/e21bd924-1d96-4371-972a-5c99d67261cc

Classification

Type
AUTHBYPASS
OWASP top 10
A2: Broken Authentication and Session Management
CWE
CWE-287
CVSS
9.8 (critical)

Miscellaneous

Original Researcher
István Márton
Verified
No
WPVDB ID
db39d2ba-ceda-4d2b-8cb6-939168354563

Timeline

Publicly Published
2024-10-28 (about 1 year ago)
Added
2024-10-29 (about 1 year ago)
Last Updated
2024-12-05 (about 1 year ago)

Other

Published
Title
Published
2024-10-24
Title
Comments – wpDiscuz < 7.6.25 - Authentication Bypass
Published
2022-09-05
Title
OAuth client Single Sign On for WordPress < 3.0.4 - Unauthenticated Settings Update to Authentication Bypass
Published
2026-05-01
Title
User Verification by PickPlugins < 2.0.47 - Unauthenticated Authentication Bypass via OTP Verification
Published
2023-12-27
Title
Checkout Mestres WP < 7.1.9.8 - Authentication Bypass via Password Reset
Published
2025-04-30
Title
Digits < 8.4.6.1 - Auth Bypass via OTP Bruteforcing