#VU17235 Privilege escalation in Total Donations - CVE-2019-6703

Cybersecurity Help s.r.o.

Published: 2019-01-28

Vulnerability identifier: #VU17235

Vulnerability risk: High

CVSSv4.0: 9.3 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:A/U:Amber]

CVE-ID: CVE-2019-6703

CWE-ID: CWE-264

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
Total Donations
Web applications / Modules and components for CMS

Vendor: CodeCanyon

Description
The vulnerability allows a remote attacker to gain elevated privileges.

The weakness exists due to improper access control in migla_ajax_functions.php in the Calmar Webmedia Total Donations plugin. A remote attacker can send requests to wp-admin/admin-ajax.php, call the miglaA_update_me action to change arbitrary options and gain administrative access to affected WordPress sites.

Successful exploitation of the vulnerability may result in site takeover.

Mitigation
Cybersecurity Help is currently unaware f any official solution to address the vulnerability.

Vulnerable software versions

Total Donations: All versions

External links
https://www.wordfence.com/blog/2019/01/wordpress-sites-compromised-via-zero-day-vulnerabilities-in-t...

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

Yes. This vulnerability is being exploited in the wild.

Latest bulletins with this vulnerability

Privilege escalation in Total Donations plugin for WordPress