Lucene search

[email protected]NVD:CVE-2023-3636

HistoryAug 31, 2023 - 6:15 a.m.

CVE-2023-3636

2023-08-3106:15:10

[email protected]

web.nvd.nist.gov

wordpress

project manager

privilege escalation

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

AI Score

8.6

Confidence

High

EPSS

0.001

Percentile

51.7%

JSON

The WP Project Manager plugin for WordPress is vulnerable to privilege escalation in versions up to, and including, 2.6.4 due to insufficient restriction on the ‘save_users_map_name’ function. This makes it possible for authenticated attackers, with minimal permissions such as a subscriber, to modify their user role by supplying the ‘usernames’ parameter.

Affected configurations

Nvd

Node

wedevswp_project_managerRange<2.6.5wordpress

VendorProductVersionCPE
wedevswp_project_manager*cpe:2.3:a:wedevs:wp_project_manager:*:*:*:*:*:wordpress:*:*

Vendor	Product	Version	CPE
wedevs	wp_project_manager	*	cpe:2.3:a:wedevs:wp_project_manager::::::wordpress::*

References

plugins.trac.wordpress.org/browser/wedevs-project-manager/tags/2.6.3/src/User/Controllers/User_Controller.php#L158

plugins.trac.wordpress.org/changeset/2942291/wedevs-project-manager#file1792

www.wordfence.com/threat-intel/vulnerabilities/id/6a5e4708-db3e-483c-852f-1a487825cf92?source=cve

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

AI Score

8.6

Confidence

High

EPSS

0.001

Percentile

51.7%

JSON

Related for NVD:CVE-2023-3636

wpvulndb1 packetstorm1 cve1 cvelist1 wordfence2 prion1