Unauthorized Password Reset Vulnerability in AppPresser's Mobile App Framework
CVE-2024-9305

8.1HIGH

Key Information:

Vendor
Wordpress
Status
Apppresser – Mobile App Framework
Vendor
CVE Published:
16 October 2024

Summary

The AppPresser – Mobile App Framework plugin for WordPress has a vulnerability that allows for privilege escalation through account takeover. This issue affects all versions up to and including 4.4.4. The root cause lies in the insufficient controls of the appp_reset_password() and validate_reset_password() functions. These functions can be exploited by unauthenticated attackers to generate and brute force a one-time password (OTP) for maliciously altering user passwords, including those of administrators. This serious security flaw highlights the importance of implementing robust mechanisms to verify the authenticity of password reset requests.

Affected Version(s)

AppPresser – Mobile App Framework * <= 4.4.4

References

https://www.wordfence.com/threat-intel/vulnerabilities/id...
https://plugins.trac.wordpress.org/browser/apppresser/tag...
https://plugins.trac.wordpress.org/browser/apppresser/tag...

CVSS V3.1

Score:
8.1
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
High
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

wesley
.