Unauthorized Data Modification Vulnerability in WP Extended Plugin
CVE-2024-8102

8.8HIGH

Key Information:

Vendor: Wordpress
Status: The Ultimate WordPress Toolkit – WP Extended
Vendor: CVE Published:; 4 September 2024

Summary

The WP Extended plugin for WordPress, developed by Ultimate WordPress Toolkit, is susceptible to unauthorized data modification due to an oversight in the module_all_toggle_ajax() function. This vulnerability affects all versions up to and including 3.0.8, allowing authenticated users with Subscriber-level access and above to alter WordPress site options without necessary permissions. Exploiting this vulnerability enables attackers to change the default role for new user registrations to administrator and to activate user registration features, thereby granting them administrative access to compromised sites.

Affected Version(s)

The Ultimate WordPress Toolkit – WP Extended * <= 3.0.8

References

https://www.wordfence.com/threat-intel/vulnerabilities/id...

https://plugins.trac.wordpress.org/browser/wpextended/tru...

https://plugins.trac.wordpress.org/changeset?sfp_email=&s...

CVSS V3.1

Score:

8.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Sep 4, 2024
Vulnerability Reserved
Aug 22, 2024

Credit

Marco Wotschka