CVE-2024-12827

Name of the Vulnerable Software and Affected Versions: The DWT - Directory & Listing WordPress Theme versions up to, and including, 3.3.6

Description: The issue allows for privilege escalation via account takeover due to improper checking of an empty token value prior to resetting a user's password through the dwt listing reset password() function. This enables unauthenticated attackers to change arbitrary users' passwords, including administrators, and gain access to their accounts.

Recommendations: For versions up to, and including, 3.3.6, as a temporary workaround, consider disabling the dwt listing reset password() function until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.