Authorization Bypass Vulnerability in uListing Plugin for WordPress
CVE-2021-4370

9.8CRITICAL

Key Information:

Vendor
Wordpress
Status
Directory Listings WordPress Plugin – Ulisting
Vendor
CVE Published:
7 June 2023

Summary

The uListing plugin for WordPress contains a vulnerability that allows unauthorized users to bypass access controls, gaining entry to numerous actions and endpoints without proper authentication. Key security measures, such as security nonces and data validation, are either insufficient or absent, creating opportunities for attackers to manipulate the plugin and perform actions typically reserved for authenticated users. This issue exists in versions up to and including 1.6.6, potentially exposing sites to various administrative controls and data manipulation risks.

Affected Version(s)

Directory Listings WordPress plugin – uListing * < 1.7

References

https://www.wordfence.com/threat-intel/vulnerabilities/id...
https://blog.nintechnet.com/wordpress-ulisting-plugin-fix...
https://plugins.trac.wordpress.org/changeset?sfp_email=&s...

CVSS V3.1

Score:
9.8
Severity:
CRITICAL
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

Jerome Bruandet
.