Lucene search

WpvulndbWPVDB-ID:EBDDCD9B-F173-45B9-B837-452D8FF37EEB

HistoryJun 07, 2024 - 12:00 a.m.

WP Reset < 2.03 - Missing Authorization to License Key Modification

2024-06-0700:00:00

wpscan.com

wordpress

wp reset

vulnerability

unauthorized modification

data

capability check

save_ajax function

subscriber-level access

4.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

6.4 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

14.2%

JSON

Description The WP Reset plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the save_ajax function in all versions up to, and including, 2.02. This makes it possible for authenticated attackers, with subscriber-level access and above, to modify the value fo the ‘License Key’ field for the ‘Activate Pro License’ setting.

CPENameOperatorVersion
eq2.03

CPE	Name	Operator	Version
		eq	2.03

References

www.wordfence.com/threat-intel/vulnerabilities/id/0d2dc86e-f937-429f-9baa-0eb0a8715513

4.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

6.4 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

14.2%

JSON

Related for WPVDB-ID:EBDDCD9B-F173-45B9-B837-452D8FF37EEB