Unauthenticated Attackers Can Bypass Authentication and Access Any User Account, Including the Site Administrator with Default ID of 1
CVE-2020-36832
9.8CRITICAL
Summary
The Ultimate Membership Pro plugin for WordPress contains a vulnerability that allows unauthenticated attackers to bypass normal authentication mechanisms. This issue affects versions 7.3 through 8.6 of the plugin. By leveraging this flaw, an attacker can gain unauthorized access to any user account on a site utilizing this plugin, including accounts with administrative privileges. This presents a significant risk, as attackers could manipulate site settings or access sensitive information. Website administrators are advised to implement immediate security measures, including updating to the latest versions of the plugin and reviewing user account activity.
Affected Version(s)
Indeed Membership Pro 7.3 < 8.6.1
References
CVSS V3.1
Score:
9.8
Severity:
CRITICAL
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved
Credit
Noman Riffat