Advanced Database Cleaner Plugin Vulnerable to PHP Object Injection
CVE-2024-0668

7.2HIGH

Key Information:

Vendor: Wordpress
Status: Advanced Database Cleaner
Vendor: CVE Published:; 5 February 2024

Summary

The Advanced Database Cleaner plugin for WordPress is susceptible to PHP Object Injection in all versions up to and including 3.1.3. This vulnerability arises from the unsafe deserialization of untrusted input within the 'process_bulk_action' function, allowing authenticated users with admin-level access to potentially inject a PHP object. While the plugin itself does not establish a property-oriented programming (POP) chain, the presence of such a chain through additional plugins or themes can lead to significant security risks. Attackers could manipulate this flaw to delete arbitrary files, access sensitive data, or execute unauthorized code within the affected WordPress site.

Affected Version(s)

Advanced Database Cleaner * <= 3.1.3

References

https://www.wordfence.com/threat-intel/vulnerabilities/id...

https://plugins.trac.wordpress.org/browser/advanced-datab...

CVSS V3.1

Score:

7.2

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Feb 5, 2024
Vulnerability Reserved
Jan 17, 2024

Credit

Richard Telleng