CVE-2024-1050
Wordfence
The Import and export users and customers plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the ajax_force_reset_password_delete_metas() function in all versions up to, and including, 1.26.5. This makes it possible for authenticated attackers, with subscriber-level access and above, to delete all forced password resets.
Problem type
- CWE-862 Missing Authorization
Affected products
carazo
Import and export users and customers
<= 1.26.5 - AFFECTED
References
wordfence.com
https://www.wordfence.com/threat-intel/vulnerabilities/id/d2fbd599-0a6c-4182-87d9-ad7cf3fb5865?source=cve
plugins.trac.wordpress.org
https://plugins.trac.wordpress.org/browser/import-users-from-csv-with-meta/trunk/classes/force-reset-password.php#L64
plugins.trac.wordpress.org
https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&old=3077276%40import-users-from-csv-with-meta&new=3077276%40import-users-from-csv-with-meta&sfp_email=&sfph_mail=
JSON source
Click to expand
{ "dataType": "CVE_RECORD", "containers": { "cna": { "credits": [ { "lang": "en", "type": "finder", "value": "Francesco Carlucci" } ], "metrics": [ { "cvssV3_1": { "version": "3.1", "baseScore": 4.3, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N" } } ], "affected": [ { "vendor": "carazo", "product": "Import and export users and customers", "versions": [ { "status": "affected", "version": "*", "versionType": "semver", "lessThanOrEqual": "1.26.5" } ], "defaultStatus": "unaffected" } ], "timeline": [ { "lang": "en", "time": "2024-05-03T00:00:00.000+00:00", "value": "Disclosed" } ], "references": [ { "url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/d2fbd599-0a6c-4182-87d9-ad7cf3fb5865?source=cve" }, { "url": "https://plugins.trac.wordpress.org/browser/import-users-from-csv-with-meta/trunk/classes/force-reset-password.php#L64" }, { "url": "https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&old=3077276%40import-users-from-csv-with-meta&new=3077276%40import-users-from-csv-with-meta&sfp_email=&sfph_mail=" } ], "descriptions": [ { "lang": "en", "value": "The Import and export users and customers plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the ajax_force_reset_password_delete_metas() function in all versions up to, and including, 1.26.5. This makes it possible for authenticated attackers, with subscriber-level access and above, to delete all forced password resets." } ], "problemTypes": [ { "descriptions": [ { "lang": "en", "description": "CWE-862 Missing Authorization" } ] } ], "providerMetadata": { "orgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "shortName": "Wordfence", "dateUpdated": "2024-05-04T07:36:22.222Z" } } }, "cveMetadata": { "cveId": "CVE-2024-1050", "state": "PUBLISHED", "dateUpdated": "2024-05-04T07:36:22.222Z", "dateReserved": "2024-01-29T19:55:57.619Z", "assignerOrgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "datePublished": "2024-05-04T07:36:22.222Z", "assignerShortName": "Wordfence" }, "dataVersion": "5.0" }