PT-2018-10681 · Woocommerce · Woocommerce Category Banner Management

Mika

Published

2018-05-31

Updated

2018-07-05

CVE-2018-11579

CVSS v3.1

5.3

Medium

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

Name of the Vulnerable Software and Affected Versions WooCommerce Category Banner Management plugin version 1.1.0

Description The issue is related to an Unauthenticated Settings Change, allowing anyone to modify the plugin's settings by sending a request with a wbm save shop page banner data action. This is due to certain wp ajax nopriv usage in the class-woo-banner-management.php file.

Recommendations For version 1.1.0, consider disabling the wp ajax nopriv usage related to the wbm save shop page banner data action until a patch is available. Restrict access to the class-woo-banner-management.php file to minimize the risk of exploitation. Avoid using the wbm save shop page banner data action in the affected API endpoint until the issue is resolved.

Exploit

Fix

Improper Authentication

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-287

Related Identifiers

CVE-2018-11579

Affected Products

Woocommerce Category Banner Management

PT-2018-10681 · Woocommerce · Woocommerce Category Banner Management

CVE-2018-11579

Weakness Enumeration

Related Identifiers

Affected Products

References · 4