Privilege Escalation Vulnerability in Premium Packages Plugin by WordPress
CVE-2023-4293

6.5MEDIUM

Key Information:

Vendor: Wordpress
Status: Premium Packages – Sell Digital Products Securely
Vendor: CVE Published:; 12 August 2023

Summary

The Premium Packages - Sell Digital Products Securely plugin for WordPress is susceptible to a privilege escalation issue. This vulnerability arises from insufficient checks within the 'wpdmpp_update_profile' function. Authenticated users, even those with minimal permissions like subscribers, can exploit this vulnerability to alter their own user roles by sending a manipulated 'profile[role]' parameter during a profile update process. This could allow unauthorized elevation of privileges, leading to significant risks for the website.

Affected Version(s)

Premium Packages – Sell Digital Products Securely * <= 5.7.4

References

https://www.wordfence.com/threat-intel/vulnerabilities/id...

https://plugins.trac.wordpress.org/browser/wpdm-premium-p...

https://plugins.trac.wordpress.org/changeset/2951917/wpdm...

CVSS V3.1

Score:

6.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

High

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Aug 12, 2023
Vulnerability Reserved
Aug 10, 2023

Credit

Lana Codes