Predictable Filenames in UsersWP Plugin Could Lead to Sensitive Information Disclosure
CVE-2024-6477

7.5HIGH

Key Information:

Vendor: Wordpress
Status: UsersWP
Vendor: CVE Published:; 3 August 2024

Badges

👾 Exploit Exists🟡 Public PoC

What is CVE-2024-6477?

The UsersWP plugin for WordPress prior to version 1.2.12 suffers from an information exposure vulnerability due to its use of predictable filenames during the export process by administrators. This flaw allows unauthenticated attackers to exploit the system and download exports containing sensitive information including IP addresses, usernames, and email addresses. Organizations using this plugin should update to the latest version promptly to mitigate risks associated with data exposure.

Affected Version(s)

UsersWP 0 < 1.2.12

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

CVE-2024-6477 - Proof of Concept

References

https://wpscan.com/vulnerability/346c855a-4d42-4a87-aac9-...

exploitvdb-entrytechnical-description

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

🟡
Public PoC available
Aug 3, 2024
👾
Exploit known to exist
Aug 3, 2024
Vulnerability published
Aug 3, 2024
Vulnerability Reserved
Jul 3, 2024

Credit

Majdeddine Ben Hadj Brahim

WPScan

Wordpress

Badges

What is CVE-2024-6477?

Affected Version(s)

Exploit Proof of Concept (PoC)

References

CVSS V3.1

Timeline

Credit