WordPress Plugin Vulnerabilities

WCMultiShipping < 2.3.8 - Subscriber+ Arbitrary Account Credentials Test

Description

The plugin does not have proper capability check on its wms_chronopost_test_credentials_ajax() function, allowing any authenticate duets, such as with subscriber, to test account credentials.

Affects Plugins

Plugin icon
wc-multishipping
Fixed in 2.3.8

References

URL
https://www.wordfence.com/threat-intel/vulnerabilities/id/16a3469d-6264-4ed7-b6ae-fdd7a80c8ca5

Classification

Type
INCORRECT AUTHORISATION
OWASP top 10
A5: Broken Access Control
CWE
CWE-863
CVSS
4.3 (medium)

Miscellaneous

Verified
No
WPVDB ID
ecca82bc-b845-4b85-aeb7-483ad1b1732f

Timeline

Publicly Published
2023-11-28 (about 2 years ago)
Added
2024-01-29 (about 2 years ago)
Last Updated
2024-01-29 (about 2 years ago)

Other

Published
Title
Published
2022-02-23
Title
WooCommerce < 6.2.1 - Subscriber+ Arbitrary Comment Deletion
Published
2023-11-16
Title
Jetpack < 12.7 - Improper Authorization via WPCom External Media REST endpoints
Published
2024-06-19
Title
Depicter < 3.1.0 - Authenticated (Contributor+) Arbitrary Nonce Generation
Published
2024-06-20
Title
WishList Member X < 3.26.7 - Subscriber+ Privilege Escalation
Published
2020-07-30
Title
JetBackup < 1.4.1 - Subscriber+ Arbitrary Backup Location Update