CVE-2021-24649

The WP User Frontend WordPress plugin before 3.5.29 uses a user supplied argument called urhidden in its registration form, which contains the role for the account to be created with, encrypted via wpuf_encryption(). This could allow an attacker having access to the AUTH_KEY and AUTH_SALT constant (via an arbitrary file access issue for example, or if the blog is using the default keys) to create an account with any role they want, such as admin
Configurations

Configuration 1 (hide)

cpe:2.3:a:wedevs:wp_user_frontend:*:*:*:*:*:wordpress:*:*

History

21 Nov 2024, 05:53

Type Values Removed Values Added
References () https://wpscan.com/vulnerability/9486744e-ab24-44e4-b06e-9e0b4be132e2 - Exploit, Third Party Advisory () https://wpscan.com/vulnerability/9486744e-ab24-44e4-b06e-9e0b4be132e2 - Exploit, Third Party Advisory

07 Nov 2023, 03:31

Type Values Removed Values Added
CWE CWE-287

Information

Published : 2022-11-21 11:15

Updated : 2024-11-21 05:53


NVD link : CVE-2021-24649

Mitre link : CVE-2021-24649

CVE.ORG link : CVE-2021-24649


JSON object : View

Products Affected

wedevs

  • wp_user_frontend
CWE

No CWE.