WordPress Plugin Vulnerabilities

GetPaid < 2.8.12 - Missing Authorization via column_subscription()

Description

The GetPaid plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the column_subscription() function in versions up to, and including, 2.8.11. This makes it possible for authenticated attackers, with contributor-level access and above, to access backend pages from the plugin.

Affects Plugins

Plugin icon
invoicing
Fixed in 2.8.12

References

CVE
CVE-2024-43973
URL
https://www.wordfence.com/threat-intel/vulnerabilities/id/63ab02c1-baeb-4fd1-a527-4287d0b17a03

Classification

Type
NO AUTHORISATION
OWASP top 10
A5: Broken Access Control
CWE
CWE-862
CVSS
4.3 (medium)

Miscellaneous

Original Researcher
Muhammad Daffa
Verified
No
WPVDB ID
dc5dfa2c-70ce-4791-873f-761eb26074ff

Timeline

Publicly Published
2024-08-28 (about 1 year ago)
Added
2024-09-04 (about 1 year ago)
Last Updated
2024-09-04 (about 1 year ago)

Other

Published
Title
Published
2024-12-30
Title
Hestia Nginx Cache < 2.4.1 - Missing Authorization
Published
2025-03-13
Title
VidoRev Extensions < 2.9.9.9.9.9.6 - Missing Authorization to Unauthenticated Youtube Video Import
Published
2025-06-05
Title
Trinity Audio < 5.20.1 - Missing Authorization
Published
2026-03-31
Title
Database for Contact Form 7, WPforms, Elementor forms < 1.5.0 - Missing Authorization to Authenticated (Contributor+) Sensitive Information Exposure via Shortcode
Published
2023-12-25
Title
Estatik Real Estate Plugin < 4.1.1 - Subscriber+ Arbitrary Option Update