Unauthenticated Attackers Can Escalate Privileges via Plugin Flaw
CVE-2024-10508

9.8CRITICAL

Key Information:

Vendor: Wordpress
Status: Registrationmagic – User Registration Plugin With Custom Registration Forms
Vendor: CVE Published:; 9 November 2024

Summary

The RegistrationMagic User Registration Plugin for WordPress is susceptible to a serious vulnerability that allows unauthenticated attackers to escalate privileges via account takeover. This issue stems from the plugin's inadequate validation of password reset tokens prior to allowing updates to user passwords. As a result, attackers can reset passwords for arbitrary users, including those with administrative privileges, and gain unauthorized access to sensitive accounts. The vulnerability exists in all versions up to and including 6.0.2.6, necessitating immediate attention and patching to mitigate risks associated with potential exploitation.

Affected Version(s)

RegistrationMagic – User Registration Plugin with Custom Registration Forms * <= 6.0.2.6

References

https://www.wordfence.com/threat-intel/vulnerabilities/id...

https://plugins.trac.wordpress.org/browser/custom-registr...

https://plugins.trac.wordpress.org/changeset/3181174/cust...

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Nov 9, 2024
Vulnerability Reserved
Oct 29, 2024

Credit

Khayal Farzaliyev