Untrusted Input Vulnerability in BuddyPress WooCommerce My Account Integration Could Lead to PHP Object Injection and File Deletion
CVE-2024-2025

8.8HIGH

Key Information:

Vendor: Wordpress
Status: Buddypress WooCommerce My Account Integration. Create WooCommerce Member Pages
Vendor: CVE Published:; 23 March 2024

Summary

The BuddyPress WooCommerce My Account Integration plugin for WordPress is susceptible to PHP Object Injection due to an issue in the deserialization of untrusted input within the get_simple_request function. This vulnerability affects all versions up to and including 3.4.20. Authenticated attackers with subscriber-level access can exploit this flaw to inject PHP Objects. If a potentially dangerous object manipulation chain exists through another installed plugin or theme, it presents the risk of arbitrary file deletion, sensitive data exposure, or arbitrary code execution, which can severely compromise the security of the affected WordPress site.

Affected Version(s)

BuddyPress WooCommerce My Account Integration. Create WooCommerce Member Pages * <= 3.4.20

References

https://www.wordfence.com/threat-intel/vulnerabilities/id...

https://plugins.trac.wordpress.org/changeset/3055634/wc4b...

CVSS V3.1

Score:

8.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Mar 23, 2024

Credit

Francesco Carlucci