Unauthenticated Attackers Can Bypass 2FA in Relais Plugin

CVE-2024-10245

9.8CRITICAL

Key Information

Vendor: Mobisoft974
Status: Relais 2fa
Vendor: CVE Published:; 12 November 2024

Badges

👾 Exploit Exists🔴 Public PoC

Summary

The Relais 2FA plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 1.0. This is due to incorrect authentication and capability checking in the 'rl_do_ajax' function. This makes it possible for unauthenticated attackers to log in as any existing user on the site, such as an administrator, if they have access to the email.

Affected Version(s)

Relais 2FA <= 1.0

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

CVE-2024-10245
Created by RandomRobbieBF

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

👾
Exploit exists.
Nov 18, 2024
Vulnerability published.
Nov 12, 2024
Disclosed
Nov 11, 2024
Vulnerability Reserved.
Oct 22, 2024
Discovered
Oct 22, 2024
Vendor Notified
Oct 22, 2024

Collectors

NVD DatabaseMitre Database1 Proof of Concept(s)

Credit

István Márton