Unauthenticated Attacker Can Privilege Escalate via Account Takeover
CVE-2024-11103

9.8CRITICAL

Key Information:

Vendor: Wordpress
Status: Photos, Files, Youtube, Twitter, Instagram, Tiktok, Ecommerce Contest Gallery – Upload, Vote, Sell Via Paypal, Social Share Buttons
Vendor: CVE Published:; 28 November 2024

Summary

The Contest Gallery plugin for WordPress contains a vulnerability that allows an attacker to escalate privileges through unauthorized access to user accounts. This is primarily caused by the plugin's failure to adequately validate a user's identity when processing password updates. As a result, unauthenticated attackers can exploit this flaw to reset passwords for any user, including administrative accounts, thus gaining access to sensitive functionalities and data within the WordPress environment. Users of versions 24.0.7 and earlier are strongly advised to update to the latest version to mitigate this risk.

Affected Version(s)

Photos, Files, YouTube, Twitter, Instagram, TikTok, Ecommerce Contest Gallery – Upload, Vote, Sell via PayPal, Social Share Buttons * <= 24.0.7

References

https://www.wordfence.com/threat-intel/vulnerabilities/id...

https://plugins.trac.wordpress.org/browser/contest-galler...

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Nov 28, 2024
Vulnerability Reserved
Nov 11, 2024

Credit

Khayal Farzaliyev