9.8

CVE-2024-6397

EPSS 0.59%
Veröffentlicht 11.07.2024 04:15:05
Zuletzt bearbeitet 21.11.2024 09:49:34
Quelle security@wordfence.com
CVE-Watchlists
Login
Unerledigt
Login

InstaWP Connect – 1-click WP Staging & Migration <= 0.1.0.44 - Authentication Bypass to Admin

The InstaWP Connect – 1-click WP Staging & Migration plugin for WordPress is vulnerable to authentication bypass in all versions up to, and including, 0.1.0.44. This is due to insufficient verification of the API key. This makes it possible for unauthenticated attackers to log in as any existing user on the site, such as an administrator, if they have access to the username, and to perform a variety of other administrative tasks. NOTE: This vulnerability was partially fixed in 0.1.0.44, but was still exploitable via Cross-Site Request Forgery.

Mögliche Gegenmaßnahme

InstaWP Connect – 1-click WP Staging & Migration: Update to version 0.1.0.45, or a newer patched version

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 10

Weitere Schwachstelleninformationen

SystemWordPress Plugin

≫

Produkt InstaWP Connect – 1-click WP Staging & Migration

Version *-0.1.0.44

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Instawp ≫ Instawp Connect SwPlatformwordpress Version < 0.1.0.45

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.59%	0.682

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
security@wordfence.com	9.8	3.9	5.9	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-287 Improper Authentication

When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.

https://plugins.trac.wordpress.org/browser/instawp-connect/tags/0.1.0.43/includes/apis/class-instawp-rest-api.php#L256

Product

https://plugins.trac.wordpress.org/browser/instawp-connect/tags/0.1.0.43/includes/class-instawp-hooks.php#L28

Product

https://plugins.trac.wordpress.org/browser/instawp-connect/tags/0.1.0.43/includes/class-instawp-hooks.php#L40

Product

https://plugins.trac.wordpress.org/changeset/3109305/

Patch

https://plugins.trac.wordpress.org/changeset/3114674/

Patch

https://www.wordfence.com/threat-intel/vulnerabilities/id/963f2485-3afa-4e17-8278-b75415af3915?source=cve

Third Party Advisory

https://www.wordfence.com/threat-intel/vulnerabilities/id/963f2485-3afa-4e17-8278-b75415af3915

Third Party Advisory

https://nvd.nist.gov/vuln/detail/CVE-2024-6397

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2024-6397

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2024-6397

EUVD