CVE-2023-0814

EPSS 0.27%
Veröffentlicht 14.02.2023 02:15:10
Zuletzt bearbeitet 21.11.2024 07:37:53
Quelle security@wordfence.com
CVE-Watchlists
Login
Unerledigt
Login

Profile Builder – User Profile & User Registration Forms <= 3.9.0 - Sensitive Information Disclosure via Shortcode

The Profile Builder – User Profile & User Registration Forms plugin for WordPress is vulnerable to sensitive information disclosure via the [user_meta] shortcode in versions up to, and including 3.9.0. This is due to insufficient restriction on sensitive user meta values that can be called via that shortcode. This makes it possible for authenticated attackers, with subscriber-level permissions, and above to retrieve sensitive user meta that can be used to gain access to a high privileged user account. This does require the Usermeta shortcode be enabled to be exploited.

Mögliche Gegenmaßnahme

User Profile Builder – Beautiful User Registration Forms, User Profiles & User Role Editor: Update to version 3.9.1, or a newer patched version

Betroffene Produkte Warnungen 0 Metriken 3 CWE 1 Referenzen 6

Weitere Schwachstelleninformationen

SystemWordPress Plugin

≫

Produkt User Profile Builder – Beautiful User Registration Forms, User Profiles & User Role Editor

Version *-3.9.0

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Cozmoslabs ≫ Profile Builder SwPlatformwordpress Version <= 3.9.0

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.27%	0.497

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	6.5	2.8	3.6	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
security@wordfence.com	6.5	2.8	3.6	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

CWE-863 Incorrect Authorization

The product performs an authorization check when an actor attempts to access a resource or perform an action, but it does not correctly perform the check.

https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&old=2864329%40profile-builder&new=2864329%40profile-builder&sfp_email=&sfph_mail=

Patch

https://www.wordfence.com/threat-intel/vulnerabilities/id/bbedad66-a5a6-4fb5-b03e-0ecf9fbef19a

Third Party Advisory

https://www.wordfence.com/threat-intel/vulnerabilities/id/bbedad66-a5a6-4fb5-b03e-0ecf9fbef19a

Third Party Advisory

https://nvd.nist.gov/vuln/detail/CVE-2023-0814

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2023-0814

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2023-0814

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2023-0814