Lucene search

WpvulndbWPVDB-ID:2B5CE062-D97D-4702-8E50-4269A1F37B88

HistoryMay 01, 2024 - 12:00 a.m.

XStore < 9.3.9 - Subscriber+ Arbitrary Options Update

2024-05-0100:00:00

wpscan.com

xstore

wordpress

vulnerability

unauthorized modification

capability check

9.3.5

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

AI Score

9.3

Confidence

High

EPSS

Percentile

9.0%

JSON

Description The theme is vulnerable to unauthorized modification of data due to a missing capability check on a function, allowing authenticated attackers, with subscriber-level access and above, to update arbitrary options which can be used to achieve privilege escalation.

References

patchstack.com/database/vulnerability/xstore/wordpress-xstore-theme-9-3-5-arbitrary-option-update-vulnerability

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

AI Score

9.3

Confidence

High

EPSS

Percentile

9.0%

JSON

Related for WPVDB-ID:2B5CE062-D97D-4702-8E50-4269A1F37B88