Main Vulnerability Database Vulnerabilities #VU19927

Improper Privilege Management in Travel Management - #VU19927

Published: August 5, 2019

Vulnerability identifier: #VU19927

CSH Severity: High

CVSSv4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber

CVE-ID: N/A

CWE-ID: CWE-269

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vulnerable software:
Travel Management

Software vendor:
Nicdark

Description

The vulnerability allows a remote attacker to escalate privilege on the target system.

The vulnerability exists due to the missing capability check in the ‘update_option’ function. A remote attacker can send a specially crafted AJAX request to the "nd_options_import_settings_php_function" and change the blog settings, for instance the site URL, the admin email address, user roles and capabilities, or give administrator privilege to any new registered user.

Remediation

Install updates from vendor's website.

External links

https://blog.nintechnet.com/privilege-escalation-vulnerability-in-wordpress-nd-travel-management-plu...

Improper Privilege Management in Travel Management - #VU19927

Description

Remediation

External links

Please verify you're human