Whit Taylor

Name of the Vulnerable Software and Affected Versions: The Clearfy Cache – WordPress optimization plugin versions up to and including 2.3.2 Description: The issue is related to Cross-Site Request Forgery due to missing or incorrect nonce validation on the 'setup-wbcr clearfy' page. This allows unauthenticated attackers to update the plugin's settings via a forged request if they can trick a site administrator into performing a specific action, such as clicking on a link. Recommendations: For versions up to and including 2.3.2, update to a version that includes the fix for the nonce validation issue on the 'setup-wbcr clearfy' page. As a temporary workaround, consider restricting access to the 'setup-wbcr clearfy' page to prevent unauthorized updates to the plugin's settings.

Name of the Vulnerable Software and Affected Versions: The Clearfy Cache – WordPress optimization plugin versions up to and including 2.3.1 Description: The issue is related to Cross-Site Request Forgery due to missing or incorrect nonce validation on the `wclearfy cache delete` functionality. This allows unauthenticated attackers to clear the cache by tricking a site administrator into performing an action, such as clicking on a link. Recommendations: For versions up to and including 2.3.1, update to a version that includes proper nonce validation for the `wclearfy cache delete` functionality to prevent Cross-Site Request Forgery attacks. As a temporary workaround, consider restricting access to the `wclearfy cache delete` functionality to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Event Tickets and Registration plugin for WordPress versions up to, and including, 5.18.1 **Description** The issue allows unauthenticated attackers to view order details of orders they did not place, which includes ticket prices, user emails, and order date, due to missing validation on a user-controlled key via the `tc-order-id` parameter. This makes it possible for attackers to access sensitive information without proper authorization. **Recommendations** For versions up to, and including, 5.18.1, update to a version later than 5.18.1 to resolve the issue. As a temporary workaround, consider restricting access to the `tc-order-id` parameter to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Paid Memberships Pro – Content Restriction, User Registration, & Paid Subscriptions plugin for WordPress versions up to, and including, 3.0.1 **Description** The issue is related to Cross-Site Request Forgery due to missing or incorrect nonce validation on the `pmpro update level group order()` function. This allows unauthenticated attackers to update order levels via a forged request if they can trick a site administrator into performing an action such as clicking on a link. **Recommendations** For versions up to, and including, 3.0.1, update to a version higher than 3.0.1 to resolve the issue. As a temporary workaround, consider disabling the `pmpro update level group order()` function until a patch is available. Restrict access to areas of the site where this function is used to minimize the risk of exploitation.