WooCommerce Social Login Plugin Vulnerable to PHP Object Injection

CVE-2024-5871

9.8CRITICAL

Key Information

Vendor: WPweb
Status: WooCommerce - Social Login
Vendor: CVE Published:; 15 June 2024

Summary

The WooCommerce - Social Login plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 2.6.2 via deserialization of untrusted input from the 'woo_slg_verify' vulnerable parameter. This makes it possible for unauthenticated attackers to inject a PHP Object. No known POP chain is present in the vulnerable software. If a POP chain is present via an additional plugin or theme installed on the target system, it could allow the attacker to delete arbitrary files, retrieve sensitive data, or execute code.

Affected Version(s)

WooCommerce - Social Login <= 2.6.2

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published.
Jun 15, 2024
Disclosed
Jun 14, 2024
Vulnerability Reserved.
Jun 11, 2024
Discovered
Jun 11, 2024
Vendor Notified
Jun 11, 2024

Collectors

NVD DatabaseMitre Database

Credit

István Márton