Main Vulnerability Database SB2019053001

SB2019053001 - Unauthenticated administrator creation in Convert Plus plugin for WordPress

Published: May 30, 2019

Security Bulletin ID SB2019053001

Severity

High

Patch available

YES

Number of vulnerabilities 1

Exploitation vector Remote access

Highest impact Code execution

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 1 security vulnerability.

1) Security restrictions bypass (CVE-ID: N/A)

The vulnerability allows a remote attacker to gain administrative access to the website.

The vulnerability exists due to application uses the supplied user role during registration and assign it to the new account. A remote attacker can register with the vulnerable website and assign administrative privileges to himself during registration.

Successful exploitation of the vulnerability allows a remote attacker to gain full access to the affected website.

Remediation

Install update from vendor's website.

References

https://www.wordfence.com/blog/2019/05/critical-vulnerability-patched-in-popular-convert-plus-plugin...
https://www.convertplug.com/plus/version-3-4-3-security-update/