CVE-2023-2717

Name of the Vulnerable Software and Affected Versions Groundhogg plugin for WordPress versions up to, and including, 2.7.9.8

Description The issue is due to missing nonce validation on the enable safe mode function, making it possible for unauthenticated attackers to enable safe mode via a forged request. This can be achieved if an attacker successfully tricks an administrator into performing an action, such as clicking on a link. Once safe mode is enabled, it disables all other plugins. A warning message about safe mode is displayed to the admin, which can be easily disabled.

Recommendations For versions up to, and including, 2.7.9.8, update to a version that includes the fix for the missing nonce validation on the enable safe mode function. As a temporary workaround, consider disabling the enable safe mode function until a patch is available to prevent exploitation.