SB2023120816 - Multiple vulnerabilities in System Dashboard plugin for WordPress
Published: December 8, 2023
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 5 secuirty vulnerabilities.
1) Improper Authorization (CVE-ID: CVE-2023-5711)
The vulnerability allows a remote attacker to gain access to potentially sensitive information.
The vulnerability exists due to a missing capability check on the sd_php_info() function. A remote user can gain unauthorized access to sensitive information on the system.
2) Improper Authorization (CVE-ID: CVE-2023-5713)
The vulnerability allows a remote attacker to gain access to potentially sensitive information.
The vulnerability exists due to a missing capability check on the sd_option_value() function. A remote user can gain unauthorized access to sensitive information on the system.
3) Improper Authorization (CVE-ID: CVE-2023-5714)
The vulnerability allows a remote attacker to gain access to potentially sensitive information.
The vulnerability exists due to a missing capability check on the sd_db_specs() function. A remote user can gain unauthorized access to sensitive information on the system.
4) Improper Authorization (CVE-ID: CVE-2023-5712)
The vulnerability allows a remote attacker to gain access to potentially sensitive information.
The vulnerability exists due to a missing capability check on the sd_global_value() function. A remote user can gain unauthorized access to sensitive information on the system.
5) Improper Authorization (CVE-ID: CVE-2023-5710)
The vulnerability allows a remote attacker to gain access to potentially sensitive information.
The vulnerability exists due to a missing capability check on the sd_constants() function. A remote user can gain unauthorized access to sensitive information on the system.
Remediation
Install update from vendor's website.
References
- https://www.wordfence.com/threat-intel/vulnerabilities/id/17bc3a9f-2bf9-44e3-81ef-bfa932085da9?source=cve
- https://plugins.trac.wordpress.org/browser/system-dashboard/tags/2.8.7/admin/class-system-dashboard-admin.php#L1925
- https://plugins.trac.wordpress.org/browser/system-dashboard/tags/2.8.8/admin/class-system-dashboard-admin.php#L1932
- https://www.wordfence.com/threat-intel/vulnerabilities/id/e9d1a33b-2518-48f7-90b6-a94a34473d1e?source=cve
- https://plugins.trac.wordpress.org/browser/system-dashboard/tags/2.8.7/admin/class-system-dashboard-admin.php#L6341
- https://plugins.trac.wordpress.org/browser/system-dashboard/tags/2.8.8/admin/class-system-dashboard-admin.php#L6357
- https://www.wordfence.com/threat-intel/vulnerabilities/id/53b3ac83-847d-4bd0-a79b-531af266e1b4?source=cve
- https://plugins.trac.wordpress.org/browser/system-dashboard/tags/2.8.7/admin/class-system-dashboard-admin.php#L2942
- https://plugins.trac.wordpress.org/browser/system-dashboard/tags/2.8.8/admin/class-system-dashboard-admin.php#L2949
- https://www.wordfence.com/threat-intel/vulnerabilities/id/70f14d9d-6ed6-4bcb-944d-f9c5aa6a17a6?source=cve
- https://plugins.trac.wordpress.org/browser/system-dashboard/tags/2.8.7/admin/class-system-dashboard-admin.php#L7382
- https://plugins.trac.wordpress.org/browser/system-dashboard/tags/2.8.8/admin/class-system-dashboard-admin.php#L7403
- https://www.wordfence.com/threat-intel/vulnerabilities/id/f170379e-e833-42e0-96fd-1e1722a8331c?source=cve
- https://plugins.trac.wordpress.org/browser/system-dashboard/tags/2.8.7/admin/class-system-dashboard-admin.php#L7930
- https://plugins.trac.wordpress.org/browser/system-dashboard/tags/2.8.8/admin/class-system-dashboard-admin.php#L7951