Privilege Escalation Vulnerability in RepairBuddy Plugin for WordPress
CVE-2024-12259

8.8HIGH

Key Information:

Vendor: WordPress
Status: Repairbuddy – Repair Shop Crm & Booking Plugin For WordPress
Vendor: CVE Published:; 18 December 2024

What is CVE-2024-12259?

The RepairBuddy plugin for WordPress is exposed to a significant security weakness that enables authenticated users with subscriber-level access and above to escalate their privileges through inappropriate email address modification. The flaw arises from insufficient identity validation during the AJAX action 'wc_update_user_data', allowing attackers to change email addresses of any user, including administrators. This breach can lead to unauthorized account access through password resets, thus posing a severe risk to user data integrity and site security.

Affected Version(s)

RepairBuddy – Repair Shop CRM & Booking Plugin for WordPress 0 <= 3.8120

References

https://www.wordfence.com/threat-intel/vulnerabilities/id...

https://plugins.trac.wordpress.org/changeset?sfp_email=&s...

CVSS V3.1

Score:

8.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 18, 2024

CVE-2024-12259 Data

JSON