Main Vulnerability Database Exploits ID:3593 - Exploit for Privilege escalation in WP GDPR Compliance - CVE-2018-19207

ID:3593 - Exploit for Privilege escalation in WP GDPR Compliance - CVE-2018-19207

Published: July 25, 2020

Vulnerability identifier: #VU15793

Vulnerability risk: High

CVE-ID: CVE-2018-19207

CWE-ID: CWE-264

Exploitation vector: Remote access

Vulnerable software:
WP GDPR Compliance

Link to public exploit:

https://github.com/vodab/wp-plugins-poc

Vulnerability description

The vulnerability allows a remote attacker to gain elevated privileges on the target system.

The weakness exists due to the software fail to do capability checks when executing its internal action save_setting to make such configuration changes when processing arbitrary options and values to this endpoint. A remote attacker can set the users_can_register option to 1, and change the default_role of new users to “administrator” to simply fill out the form at /wp-login.php?action=register and immediately access a privileged account, change these options back to normal and install a malicious plugin or theme containing a web shell or other malware to further infect the victim site.

Note: this vulnerability is being actively exploited in the wild.

Remediation

Update to version 1.4.3.

ID:3593 - Exploit for Privilege escalation in WP GDPR Compliance - CVE-2018-19207

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human