CVE-2024-7381

The Geo Controller plugin for WordPress is vulnerable to unauthorized shortcode execution due to missing authorization and capability checks on the ajax__shortcode_cache function in all versions up to, and including, 8.6.9. This makes it possible for unauthenticated attackers to execute arbitrary shortcodes available on the target site.

CVSS v3 5.3 MEDIUM

5.3^/10

CVSS v3 : MEDIUM

Vector :

Exploitability : 3.9 / Impact : 1.4

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact LOW

Availability Impact NONE

Scope UNCHANGED

References

Link	Resource
https://plugins.trac.wordpress.org/browser/cf-geoplugin/tags/8.6.9/inc/classes/Shortcodes.php#L1932	Product
https://www.wordfence.com/threat-intel/vulnerabilities/id/4ed7b13a-eec3-4035-8815-15228fb05af1?source=cve	Third Party Advisory

Configurations

Configuration 1 (hide)

cpe:2.3:a:infinitumform:geo_controller:*:*:*:*:*:wordpress:*:*

History

06 Sep 2024, 10:44

Type	Values Removed	Values Added
New CVE

Information

Published : 2024-09-05 11:15

Updated : 2024-09-06 10:44

NVD link : CVE-2024-7381

Mitre link : CVE-2024-7381

CVE.ORG link : CVE-2024-7381

JSON object : View

Products Affected

infinitumform

geo_controller

CWE

CWE-862

Missing Authorization

{"id": "CVE-2024-7381", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 5.3, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N", "integrityImpact": "LOW", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 1.4, "exploitabilityScore": 3.9}, {"type": "Secondary", "source": "security@wordfence.com", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 5.3, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "LOW"}, "impactScore": 1.4, "exploitabilityScore": 3.9}]}, "published": "2024-09-05T11:15:13.043", "references": [{"url": "https://plugins.trac.wordpress.org/browser/cf-geoplugin/tags/8.6.9/inc/classes/Shortcodes.php#L1932", "tags": ["Product"], "source": "security@wordfence.com"}, {"url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/4ed7b13a-eec3-4035-8815-15228fb05af1?source=cve", "tags": ["Third Party Advisory"], "source": "security@wordfence.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "security@wordfence.com", "description": [{"lang": "en", "value": "CWE-862"}]}], "descriptions": [{"lang": "en", "value": "The Geo Controller plugin for WordPress is vulnerable to unauthorized shortcode execution due to missing authorization and capability checks on the ajax__shortcode_cache function in all versions up to, and including, 8.6.9. This makes it possible for unauthenticated attackers to execute arbitrary shortcodes available on the target site."}, {"lang": "es", "value": "El complemento Geo Controller para WordPress es vulnerable a la ejecuci\u00f3n no autorizada de c\u00f3digos cortos debido a la falta de comprobaciones de autorizaci\u00f3n y capacidad en la funci\u00f3n ajax__shortcode_cache en todas las versiones hasta la 8.6.9 incluida. Esto permite que atacantes no autenticados ejecuten c\u00f3digos cortos arbitrarios disponibles en el sitio de destino."}], "lastModified": "2024-09-06T10:44:38.390", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:infinitumform:geo_controller:*:*:*:*:*:wordpress:*:*", "vulnerable": true, "matchCriteriaId": "43AAD049-385A-4A40-BBCA-4C9DA0E10436", "versionEndIncluding": "8.6.9"}], "operator": "OR"}]}], "sourceIdentifier": "security@wordfence.com"}