CVE-2024-9262

Name of the Vulnerable Software and Affected Versions The User Meta – User Profile Builder and User management plugin for WordPress versions up to, and including, 3.1

Description The issue is related to Insecure Direct Object Reference, which can be exploited by authenticated attackers with Contributor-level access and above to obtain user meta values from form fields. This requires a site administrator to create a form that displays potentially sensitive information. Unauthenticated users may also exploit this if the 'user-meta-public-profile' shortcode is used insecurely. The vulnerability is due to missing validation on a user-controlled key via the getUser() function.

Recommendations For versions up to, and including, 3.1, consider disabling the getUser() function until a patch is available to prevent exploitation. Restrict access to potentially sensitive information in forms and ensure the 'user-meta-public-profile' shortcode is used securely to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.