Lucene search

PRIOn knowledge basePRION:CVE-2020-36700

HistoryJun 07, 2023 - 2:15 a.m.

Authorization

2023-06-0702:15:00

PRIOn knowledge base

www.prio-n.com

wordpress

kingcomposer

plugin

authorization bypass

security nonce

authenticated attackers

arbitrary options

arbitrary files

arbitrary content

8.4 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

49.9%

JSON

The Page Builder: KingComposer plugin for WordPress is vulnerable to authorization bypass in versions up to, and including, 2.9.3. This is due to a security nonce being leaked in the ‘/wp-admin/index.php’ page. This makes it possible for authenticated attackers to change arbitrary WordPress options, delete arbitrary files/folders, and inject arbitrary content.

CPENameOperatorVersion
page_builder_kingcomposerle2.9.3

CPE	Name	Operator	Version
	page_builder_kingcomposer	le	2.9.3

References

blog.nintechnet.com/wordpress-kingcomposer-page-builder-fixed-multiple-critical-vulnerabilities/

plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&old=2320014%40kingcomposer&new=2320014%40kingcomposer&sfp_email=&sfph_mail=

wordpress.org/plugins/kingcomposer/

www.wordfence.com/threat-intel/vulnerabilities/id/1bdba04e-df4d-4094-877e-611d69e2e25d?source=cve