CVE-2024-8253

The Post Grid and Gutenberg Blocks plugin for WordPress is vulnerable to privilege escalation in all versions 2.2.87 to 2.2.90. This is due to the plugin not properly restricting what user meta values can be updated and ensuring a form is active. This makes it possible for authenticated attackers, with subscriber-level access and above, to update their user meta to become an administrator.
Configurations

Configuration 1 (hide)

cpe:2.3:a:pickplugins:post_grid:*:*:*:*:*:wordpress:*:*

History

25 Sep 2024, 19:42

Type Values Removed Values Added
CWE NVD-CWE-noinfo
First Time Pickplugins
Pickplugins post Grid
CPE cpe:2.3:a:pickplugins:post_grid:*:*:*:*:*:wordpress:*:*
References () https://plugins.trac.wordpress.org/browser/post-grid/trunk/includes/blocks/form-wrap/functions.php#L3032 - () https://plugins.trac.wordpress.org/browser/post-grid/trunk/includes/blocks/form-wrap/functions.php#L3032 - Product
References () https://plugins.trac.wordpress.org/changeset/3130155/post-grid/tags/2.2.87/includes/blocks/form-wrap/functions.php - () https://plugins.trac.wordpress.org/changeset/3130155/post-grid/tags/2.2.87/includes/blocks/form-wrap/functions.php - Patch
References () https://plugins.trac.wordpress.org/changeset/3146752/post-grid/tags/2.2.91/includes/blocks/form-wrap/functions.php - () https://plugins.trac.wordpress.org/changeset/3146752/post-grid/tags/2.2.91/includes/blocks/form-wrap/functions.php - Patch
References () https://www.wordfence.com/threat-intel/vulnerabilities/id/f5f18cae-b7f8-4afd-adfa-c616c63f9419?source=cve - () https://www.wordfence.com/threat-intel/vulnerabilities/id/f5f18cae-b7f8-4afd-adfa-c616c63f9419?source=cve - Third Party Advisory

11 Sep 2024, 16:26

Type Values Removed Values Added
Summary
  • (es) El complemento Post Grid y Gutenberg Blocks para WordPress es vulnerable a la escalada de privilegios en todas las versiones 2.2.87 a 2.2.90. Esto se debe a que el complemento no restringe adecuadamente qué valores meta de usuario se pueden actualizar y no garantiza que un formulario esté activo. Esto hace posible que los atacantes autenticados, con acceso de nivel de suscriptor y superior, actualicen sus metadatos de usuario para convertirse en administradores.

11 Sep 2024, 04:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-09-11 04:15

Updated : 2024-09-25 19:42


NVD link : CVE-2024-8253

Mitre link : CVE-2024-8253

CVE.ORG link : CVE-2024-8253


JSON object : View

Products Affected

pickplugins

  • post_grid
CWE
NVD-CWE-noinfo CWE-266

Incorrect Privilege Assignment