CVE-2023-0889

Name of the Vulnerable Software and Affected Versions Themeflection Numbers WordPress plugin versions prior to 2.0.1

Description The issue is related to a lack of authorisation and CSRF check in an AJAX action, which does not ensure that the options to be updated belong to the plugin. This could allow any authenticated users, such as subscribers, to update arbitrary blog options, including enabling registration and setting the default role to administrator.

Recommendations For versions prior to 2.0.1, update to version 2.0.1 or later to resolve the issue. As a temporary workaround, consider restricting access to the AJAX action or disabling it until a patch is available. Additionally, restrict the ability of subscribers to update blog options to minimize the risk of exploitation.