Lucene search

[email protected]CVE-2023-0940

HistoryMar 20, 2023 - 4:15 p.m.

CVE-2023-0940

2023-03-2016:15:12

CWE-863

[email protected]

web.nvd.nist.gov

profilegrid

wordpress

plugin

cve-2023-0940

security

vulnerability

password reset

authorization

nvd

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

8.7 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

36.7%

JSON

The ProfileGrid WordPress plugin before 5.3.1 provides an AJAX endpoint for resetting a user password but does not implement proper authorization. This allows a user with low privileges, such as subscriber, to change the password of any account, including Administrator ones.

Affected configurations

Vulners

NVD

Node

metagaussprofilegridRange<5.3.1

VendorProductVersionCPE
metagaussprofilegrid*cpe:2.3:a:metagauss:profilegrid:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
metagauss	profilegrid	*	cpe:2.3:a:metagauss:profilegrid::::::::

CNA Affected

[
  {
    "vendor": "Unknown",
    "product": "ProfileGrid",
    "versions": [
      {
        "status": "affected",
        "versionType": "custom",
        "version": "0",
        "lessThan": "5.3.1"
      }
    ],
    "defaultStatus": "unaffected",
    "collectionURL": "https://wordpress.org/plugins"
  }
]

References

wpscan.com/vulnerability/56744f72-2d48-4f42-8195-24b4dd951bb5

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

8.7 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

36.7%

JSON

Related for CVE-2023-0940

cvelist1 prion1 nvd1 wordfence1