#VU26023 Improper access control in Import Export WordPress Users
Vulnerability identifier: #VU26023
Vulnerability risk: High
CVSSv3.1: 7.7 [CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]
CVE-ID:
CWE-ID:
CWE-284
Exploitation vector: Network
Exploit availability: No
Vulnerable software:
Import Export WordPress Users
Web applications /
Modules and components for CMS
Vendor: WebToffee
Description
The vulnerability allows a remote attacker to gain unauthorized access to otherwise restricted functionality.
The vulnerability exists due to improper capability check in "manage_woocommerce" function when a site is running the affected plugin without WooCommerce installed. A remote authenticated attacker can use CSV file, import new users with administrative capabilities and gain complete control over the site.
Mitigation
Install updates from vendor's website.
Vulnerable software versions
Import Export WordPress Users: 1.0.0 - 1.3.8
External links
http://wpvulndb.com/vulnerabilities/10125/
http://www.wordfence.com/blog/2020/03/vulnerability-patched-in-import-export-wordpress-users/
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
