PT-2022-24165 · WordPress · Jeg Elementor Kit
Ram
+1
·
Published
2022-12-22
·
Updated
2022-12-30
·
CVE-2022-3794
CVSS v3.1
5.4
Medium
| Vector | AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N |
Name of the Vulnerable Software and Affected Versions
Jeg Elementor Kit plugin for WordPress versions up to, and including, 2.5.6
Description
The issue concerns an authorization bypass in various AJAX actions. Authenticated users can exploit an easily available nonce value to create header templates and make additional changes to the site, due to the plugin's lack of capability checks for this purpose.
Recommendations
For versions up to, and including, 2.5.6, update to a version that addresses the authorization bypass issue to prevent exploitation. As a temporary workaround, consider restricting access to the AJAX actions that are vulnerable to authorization bypass until a patch is available.
Exploit
Fix
IDOR
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Jeg Elementor Kit