5.3
CVE-2024-8794
- EPSS 0.38%
- Veröffentlicht 24.09.2024 03:15:03
- Zuletzt bearbeitet 26.09.2024 16:23:46
- Quelle security@wordfence.com
- CVE-Watchlists
- Unerledigt
LoginBA Book Everything <= 1.6.20 - Unauthenticated Arbitrary User Password Reset
The BA Book Everything plugin for WordPress is vulnerable to arbitrary password reset in all versions up to, and including, 1.6.20. This is due to the reset_user_password() function not verifying a user's identity prior to setting a password. This makes it possible for unauthenticated attackers to reset any user's passwords, including administrators. It's important to note that the attacker will not have access to the generated password, therefore, privilege escalation is not possible.
Mögliche Gegenmaßnahme
BA Book Everything: Update to version 1.6.21, or a newer patched version
Weitere Schwachstelleninformationen
SystemWordPress Plugin
≫
Produkt
BA Book Everything
Version
*-1.6.20
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Ba-booking ≫ Ba Book Everything SwPlatformwordpress Version < 1.6.21
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.38% | 0.588 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| security@wordfence.com | 5.3 | 3.9 | 1.4 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
|
CWE-620 Unverified Password Change
When setting a new password for a user, the product does not require knowledge of the original password, or using another form of authentication.