CVE-2024-1912

Name of the Vulnerable Software and Affected Versions Categorify plugin for WordPress versions up to, and including, 1.0.7.4

Description The issue is due to missing or incorrect nonce validation on the categorifyAjaxUpdateFolderPosition function, making it possible for unauthenticated attackers to update the folder position of categories as well as update the metadata of other taxonomies via a forged request. This can be achieved if an attacker can trick a site administrator into performing an action such as clicking on a link.

Recommendations For versions up to, and including, 1.0.7.4, update to a version that includes the correct nonce validation for the categorifyAjaxUpdateFolderPosition function to prevent Cross-Site Request Forgery attacks. As a temporary workaround, consider disabling the categorifyAjaxUpdateFolderPosition function until a patch is available.