Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
wpvulndbWpvulndbWPVDB-ID:637BBD1D-2BF2-470E-8D19-BD48A2280530
HistoryAug 31, 2023 - 12:00 a.m.

Multiple Plugins from ServMask - Unauthenticated Access Token Update

2023-08-3100:00:00
wpscan.com
5
servmask all-in-one wp migration box extension
admin_init action
unauthenticated access

6.3 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

15.7%

JSON

Description The plugins do not have authorisation in the init() function hooked to the admin_init action, allowing unauthenticated attackers to update the access token

PoC

With the All-in-One WP Migration Box Extension installed, open the below URL as unauthenticated: https://example.com/wp-admin/admin-ajax.php?ai1wmbe_token=AAAA

CPENameOperatorVersion
eq1.54
eq3.76
eq2.80
eq1.67

Related

cvelist 1
vulnrichment 1
wpexploit 1
cve 1
nvd 1
wordfence 1
cvelist
cvelist
CVE-2023-40004 Unauth. Access Token Manipulation vulnerability in multiple ServMask WordPress plugins
2024-06-19 12:03:07
vulnrichment
vulnrichment
CVE-2023-40004 Unauth. Access Token Manipulation vulnerability in multiple ServMask WordPress plugins
2024-06-19 12:03:07
wpexploit
wpexploit
Multiple Plugins from ServMask - Unauthenticated Access Token Update
2023-08-31 00:00:00
cve
cve
CVE-2023-40004
2024-06-19 12:15:09
nvd
nvd
CVE-2023-40004
2024-06-19 12:15:09
wordfence
wordfence
Wordfence Intelligence Weekly WordPress Vulnerability Report (August 28, 2023 to September 3, 2023)
2023-09-07 12:51:06

6.3 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

15.7%

JSON
Related for WPVDB-ID:637BBD1D-2BF2-470E-8D19-BD48A2280530
cvelist1vulnrichment1wpexploit1cve1nvd1wordfence1