Authentication Bypass Vulnerability in UserPro Plugin for WordPress
CVE-2017-16562

9.8CRITICAL

Key Information:

Vendor
Wordpress
Status
Userpro
Vendor
CVE Published:
10 November 2017

Summary

The UserPro plugin for WordPress, before version 4.9.17.1, contains a security flaw that enables remote attackers to bypass authentication mechanisms. This vulnerability specifically affects sites using the 'admin' username, allowing unauthorized users to gain administrative privileges through manipulation of the 'up_auto_log' parameter in the QUERY_STRING. Exploiting this flaw requires no prior authentication, posing a significant security risk to affected WordPress installations.

References

https://wpvulndb.com/vulnerabilities/8950
x_refsource_MISC
https://codecanyon.net/item/userpro-user-profiles-with-so...
x_refsource_CONFIRM
https://www.exploit-db.com/exploits/43117/
exploitx_refsource_EXPLOIT-DB

EPSS Score

33% chance of being exploited in the next 30 days.

CVSS V3.1

Score:
9.8
Severity:
CRITICAL
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.