Lucene search

WordfenceCVE-2020-36725

HistoryJun 07, 2023 - 2:15 a.m.

CVE-2020-36725

2023-06-0702:15:12

CWE-862

Wordfence

web.nvd.nist.gov

cve-2020-36725

wordpress

vulnerability

options change

authenticated attackers

restricted access

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

AI Score

7.9

Confidence

High

EPSS

0.001

Percentile

47.2%

JSON

The TI WooCommerce Wishlist and TI WooCommerce Wishlist Pro plugins for WordPress are vulnerable to an Options Change vulnerability in versions up to, and including, 1.21.11 and 1.21.4 via the ‘ti-woocommerce-wishlist/includes/export.class.php’ file. This makes it possible for authenticated attackers to gain otherwise restricted access to the vulnerable blog and update any settings.

Affected configurations

Nvd

Vulners

Node

templateinvadersti_woocommerce_wishlistRange<1.21.5prowordpress

templateinvadersti_woocommerce_wishlistRange<1.21.12freewordpress

VendorProductVersionCPE
templateinvadersti_woocommerce_wishlist*cpe:2.3:a:templateinvaders:ti_woocommerce_wishlist:*:*:*:*:pro:wordpress:*:*
templateinvadersti_woocommerce_wishlist*cpe:2.3:a:templateinvaders:ti_woocommerce_wishlist:*:*:*:*:free:wordpress:*:*

Vendor	Product	Version	CPE
templateinvaders	ti_woocommerce_wishlist	*	cpe:2.3:a:templateinvaders:ti_woocommerce_wishlist:::::pro:wordpress::
templateinvaders	ti_woocommerce_wishlist	*	cpe:2.3:a:templateinvaders:ti_woocommerce_wishlist:::::free:wordpress::

CNA Affected

[
  {
    "vendor": "templateinvaders",
    "product": "TI WooCommerce Wishlist",
    "versions": [
      {
        "version": "*",
        "status": "affected",
        "lessThanOrEqual": "1.21.11",
        "versionType": "semver"
      }
    ],
    "defaultStatus": "unaffected"
  },
  {
    "vendor": "TemplateInvaders",
    "product": "TI WooCommerce Wishlist Pro",
    "versions": [
      {
        "version": "*",
        "status": "affected",
        "lessThanOrEqual": "1.21.4",
        "versionType": "semver"
      }
    ],
    "defaultStatus": "unaffected"
  }
]

References

blog.nintechnet.com/critical-zero-day-vulnerability-fixed-in-wordpress-ti-woocommerce-wishlist-plugin/

templateinvaders.com/changelogs/ti-woocommerce-wishlist-plugin-changelog/

wpscan.com/vulnerability/2e2fb815-7cca-4e6c-b466-179337fe99ee

www.wordfence.com/threat-intel/vulnerabilities/id/d60b5741-5496-4e87-bcb0-adaa0db07d90?source=cve

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

AI Score

7.9

Confidence

High

EPSS

0.001

Percentile

47.2%

JSON

Related for CVE-2020-36725