exploitDog

CVE-2023-0889

Опубликовано: 17 апр. 2023

Источник: nvd

CVSS3: 6.5

EPSS Низкий

Описание

Themeflection Numbers WordPress plugin before 2.0.1 does not have authorisation and CSRF check in an AJAX action, and does not ensure that the options to be updated belong to the plugin. As a result, it could allow any authenticated users, such as subscriber, to update arbitrary blog options, such as enabling registration and set the default role to administrator

Ссылки

https://wpscan.com/vulnerability/c39473a7-47fc-4bce-99ad-28d03f41e74e
Exploit
Third Party Advisory
https://wpscan.com/vulnerability/c39473a7-47fc-4bce-99ad-28d03f41e74e
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:metagauss:themeflection_numbers:*:*:*:*:*:wordpress:*:*

Версия до 2.0.1 (исключая)

EPSS

Процентиль: 28%

0.00101

Низкий

6.5 Medium

CVSS3

Дефекты

Связанные уязвимости

GHSA-vh2f-q9g6-wv38

CVSS3: 6.5

github

почти 3 года назад

Themeflection Numbers WordPress plugin before 2.0.1 does not have authorisation and CSRF check in an AJAX action, and does not ensure that the options to be updated belong to the plugin. As a result, it could allow any authenticated users, such as subscriber, to update arbitrary blog options, such as enabling registration and set the default role to administrator

EPSS

Процентиль: 28%

0.00101

Низкий

6.5 Medium

CVSS3

Дефекты