Insecure Direct Object Reference in User Frontend Plugin for WordPress
CVE-2026-12418

5.3MEDIUM

What is CVE-2026-12418?

The User Frontend plugin for WordPress has a vulnerability that allows unauthenticated attackers to manipulate post data through the wpuf_files_data parameter. This flaw arises from insufficient validation on a user-controlled key, enabling the overwriting of post titles, contents, and excerpts of any post, including those created by site administrators. The exploitation occurs via accessible WPUF post submission forms, which are reachable by users without any assigned WordPress roles, as the wpuf_submit_post AJAX action only requires a nonce, lacking any further capability checks for the related post editing operations.

Affected Version(s)

User Frontend: AI Powered Frontend Posting, User Directory, Profile Builder, Membership & User Registration 0 <= 4.3.7

References

CVSS V3.1

Score:
5.3
Severity:
MEDIUM
Confidentiality:
None
Integrity:
Low
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

Kim ChanYeop
.