7.2
CVE-2024-9927
- EPSS 0.45%
- Veröffentlicht 23.10.2024 02:15:07
- Zuletzt bearbeitet 25.10.2024 16:29:27
- Quelle security@wordfence.com
- CVE-Watchlists
- Unerledigt
LoginWooCommerce Order Proposal <= 2.0.5 - Authenticated (Shop Manager+) Privilege Escalation via Order Proposal
WooCommerce Order Proposal <= 2.0.5 - Authenticated (Shop Manager+) Privilege Escalation via Order Proposal
The WooCommerce Order Proposal plugin for WordPress is vulnerable to privilege escalation via order proposal in all versions up to and including 2.0.5. This is due to the improper implementation of allow_payment_without_login function. This makes it possible for authenticated attackers, with Shop Manager-level access and above, to log in to WordPress as an arbitrary user account, including administrators.
Mögliche Gegenmaßnahme
WooCommerce Order Proposal: Update to version 2.0.6, or a newer patched version
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Wpovernight ≫ Woocommerce Order Proposal SwPlatformwordpress Version < 2.0.6
Weitere Schwachstelleninformationen
SystemWordPress Plugin
≫
Produkt
WooCommerce Order Proposal
Version
*-2.0.5
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.45% | 0.359 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| security@wordfence.com | 7.2 | 1.2 | 5.9 |
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
|
CWE-287 Improper Authentication
When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.
https://wpovernight.com/downloads/woocommerce-order-proposal/
https://www.wordfence.com/threat-intel/vulnerabilities/id/cdc993a4-6f65-4570-811c-13a80dbec064?source=cve
https://www.wordfence.com/threat-intel/vulnerabilities/id/cdc993a4-6f65-4570-811c-13a80dbec064