PT-2024-16344 · WordPress · The Ultimate Member
Kevin Wydler
+1
·
Published
2024-11-21
·
Updated
2024-11-21
·
CVE-2024-10528
CVSS v3.1
4.3
Medium
| Vector | AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N |
Name of the Vulnerable Software and Affected Versions
The Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin versions up to, and including, 2.8.9
Description
The issue allows authenticated attackers with subscriber-level access and above to update the profile pictures of other users due to a missing capability check on the
wp ajax um resize image() and ajax resize image() functions.Recommendations
For versions up to, and including, 2.8.9, update to a version that includes a fix for the missing capability check in the
wp ajax um resize image() and ajax resize image() functions.
As a temporary workaround, consider restricting access to the wp ajax um resize image() and ajax resize image() functions to prevent unauthorized profile picture updates.Fix
Missing Authorization
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
The Ultimate Member