WooCommerce Social Login Plugin Vulnerable to PHP Object Injection
CVE-2024-5871
9.8CRITICAL
Key Information
- Vendor
- WPweb
- Status
- WooCommerce - Social Login
- Vendor
- CVE Published:
- 15 June 2024
Summary
The WooCommerce - Social Login plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 2.6.2 via deserialization of untrusted input from the 'woo_slg_verify' vulnerable parameter. This makes it possible for unauthenticated attackers to inject a PHP Object. No known POP chain is present in the vulnerable software. If a POP chain is present via an additional plugin or theme installed on the target system, it could allow the attacker to delete arbitrary files, retrieve sensitive data, or execute code.
Affected Version(s)
WooCommerce - Social Login <= 2.6.2
CVSS V3.1
Score:
9.8
Severity:
CRITICAL
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published.
Disclosed
Vulnerability Reserved.
Discovered
Vendor Notified
Collectors
NVD DatabaseMitre Database
Credit
István Márton