CVE-2024-9195

Name of the Vulnerable Software and Affected Versions The WHMPress - WHMCS Client Area plugin for WordPress versions up to, and including, 4.3-revision-3

Description The issue allows unauthorized modification of data, potentially leading to privilege escalation, due to a missing capability check on the update settings case in the "/admin/ajax.php" file. This enables authenticated attackers with Subscriber-level access and above to update arbitrary options on the WordPress site, which can be used to update the default role for registration to administrator and enable user registration, allowing attackers to gain administrative user access to a vulnerable site.

Recommendations For versions up to, and including, 4.3-revision-3, update to a version that includes the necessary capability check to prevent unauthorized modification of data. As a temporary workaround, consider restricting access to the "/admin/ajax.php" file to minimize the risk of exploitation.