PT-2024-12291 · WordPress · Materialis
Gibran Abdillah
·
Published
2024-06-20
·
Updated
2024-07-15
·
CVE-2023-3204
CVSS v3.1
6.5
Medium
| Vector | AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N |
Name of the Vulnerable Software and Affected Versions
Materialis theme for WordPress versions up to, and including, 1.1.24
Description
The issue is due to missing authorization checks on the
companion disable popup() function called via an AJAX action. This allows authenticated attackers, with minimal permissions such as subscribers, to modify any option on the site to a numerical value.Recommendations
For versions up to, and including, 1.1.24, consider disabling the
companion disable popup() function until a patch is available to prevent exploitation. Restrict access to the AJAX action that calls this function to minimize the risk of unauthorized option modifications.Fix
Missing Authorization
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Materialis