Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
wpvulndbChloe ChamberlandWPVDB-ID:3789DEF3-BA22-45D9-9951-BA51684257BA
HistoryFeb 17, 2020 - 12:00 a.m.

wpCentral < 1.5.1 - Improper Access Control to Privilege Escalation

2020-02-1700:00:00
Chloe Chamberland
wpscan.com
12

0.038 Low

EPSS

Percentile

91.9%

JSON

The flaw allowed anybody to escalate their privileges to those of an administrator, as long as subscriber-level registration was enabled on a given WordPress site with the vulnerable plugin installed.

PoC

1. Log in as Subscriber. 2. Scrape the page (/wp-admin/index.php) for the connection key. (i.e. view source and search for “Connection Key”) Copy the key. Excerpt:

wpCentral Connection Key

lsgp0jlf3hjnaudtozswglpdva4xodnd94hcu5qb81dzdpt4y3iagwerwbwukmcw78g2dihphluqxagvo7dmm0igxamp2cw58jan0jvjhmv7dh953ububhnuimkgnmlk

CPENameOperatorVersion
wp-centrallt1.5.1

Related

openvas 1
cvelist 1
patchstack 1
prion 1
wpexploit 1
nuclei 1
nvd 1
cve 1
openvas
openvas
WordPress wpCentral Plugin < 1.5.1 Improper Access Control Vulnerability
2020-02-25 00:00:00
cvelist
cvelist
CVE-2020-9043
2020-02-17 16:53:52
patchstack
patchstack
WordPress wpCentral plugin <= 1.5.0 - Improper Access Control vulnerability leading to Privilege Escalation
2020-02-17 00:00:00
prion
prion
Design/Logic Flaw
2020-02-17 17:15:00
wpexploit
wpexploit
wpCentral < 1.5.1 - Improper Access Control to Privilege Escalation
2020-02-17 00:00:00
nuclei
nuclei
WordPress wpCentral <1.5.1 - Information Disclosure
2022-07-23 14:45:35
nvd
nvd
CVE-2020-9043
2020-02-17 17:15:15
cve
cve
CVE-2020-9043
2020-02-17 17:15:15

0.038 Low

EPSS

Percentile

91.9%

JSON
Related for WPVDB-ID:3789DEF3-BA22-45D9-9951-BA51684257BA
openvas1cvelist1patchstack1prion1wpexploit1nuclei1nvd1cve1