CVE-2022-4239

The Workreap WordPress theme before 2.6.4 does not verify that an addon service belongs to the user issuing the request, or indeed that it is an addon service, when processing the workreap_addons_service_remove action, allowing any user to delete any post by knowing or guessing the id.

CVSS v3 6.5 MEDIUM

6.5^/10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 2.8 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact HIGH

Availability Impact NONE

Scope UNCHANGED

References

Link	Resource
https://wpscan.com/vulnerability/1c163987-fb53-43f7-bbff-1c2d8c0d694c	Exploit Third Party Advisory
https://wpscan.com/vulnerability/1c163987-fb53-43f7-bbff-1c2d8c0d694c	Exploit Third Party Advisory

Configurations

Configuration 1 (hide)

cpe:2.3:a:amentotech:workreap:*:*:*:*:*:wordpress:*:*

History

21 Nov 2024, 07:34

Type	Values Removed	Values Added
References	~~() https://wpscan.com/vulnerability/1c163987-fb53-43f7-bbff-1c2d8c0d694c - Exploit, Third Party Advisory~~	() https://wpscan.com/vulnerability/1c163987-fb53-43f7-bbff-1c2d8c0d694c - Exploit, Third Party Advisory
Summary		(es) El tema Workreap WordPress anterior a 2.6.4 no verifica que un servicio complementario pertenezca al usuario que emite la solicitud, o incluso que sea un servicio complementario, al procesar la acción workreap_addons_service_remove, lo que permite a cualquier usuario eliminar cualquier publicación conociendo o adivinando la identificación.

Information

Published : 2022-12-26 13:15

Updated : 2025-04-14 14:15

NVD link : CVE-2022-4239

Mitre link : CVE-2022-4239

CVE.ORG link : CVE-2022-4239

JSON object : View

Products Affected

amentotech

workreap

CWE

No CWE.

{"id": "CVE-2022-4239", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 6.5, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "LOW", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 2.8}, {"type": "Secondary", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 6.5, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "LOW", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 2.8}]}, "published": "2022-12-26T13:15:13.840", "references": [{"url": "https://wpscan.com/vulnerability/1c163987-fb53-43f7-bbff-1c2d8c0d694c", "tags": ["Exploit", "Third Party Advisory"], "source": "contact@wpscan.com"}, {"url": "https://wpscan.com/vulnerability/1c163987-fb53-43f7-bbff-1c2d8c0d694c", "tags": ["Exploit", "Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "descriptions": [{"lang": "en", "value": "The Workreap WordPress theme before 2.6.4 does not verify that an addon service belongs to the user issuing the request, or indeed that it is an addon service, when processing the workreap_addons_service_remove action, allowing any user to delete any post by knowing or guessing the id."}, {"lang": "es", "value": "El tema Workreap WordPress anterior a 2.6.4 no verifica que un servicio complementario pertenezca al usuario que emite la solicitud, o incluso que sea un servicio complementario, al procesar la acci\u00f3n workreap_addons_service_remove, lo que permite a cualquier usuario eliminar cualquier publicaci\u00f3n conociendo o adivinando la identificaci\u00f3n."}], "lastModified": "2025-04-14T14:15:23.100", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:amentotech:workreap:*:*:*:*:*:wordpress:*:*", "vulnerable": true, "matchCriteriaId": "2994F00B-6E1E-4E11-A076-49F1D7C5790B", "versionEndExcluding": "2.6.4"}], "operator": "OR"}]}], "sourceIdentifier": "contact@wpscan.com"}

6.5 /10