#VU42131 Permissions, Privileges, and Access Controls in WordPress - CVE-2010-5297

Cybersecurity Help s.r.o.

Published: 2014-01-21 | Updated: 2020-08-10

Vulnerability identifier: #VU42131

Vulnerability risk: Low

CVSSv4.0: 0.5 [CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2010-5297

CWE-ID: CWE-264

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
WordPress
Web applications / CMS

Vendor: WordPress.ORG

Description

The vulnerability allows a remote #AU# to manipulate data.

WordPress before 3.0.1, when a Multisite installation is used, permanently retains the "site administrators can add users" option once changed, which might allow remote authenticated administrators to bypass intended access restrictions in opportunistic circumstances via an add action after a temporary change.

Mitigation
Install update from vendor's website.

Vulnerable software versions

WordPress: 2.0 - 2.0.11, 2.1 - 2.1.3, 2.2 - 2.2.3, 2.3 - 2.3.3, 2.5 - 2.5.1, 2.6 - 2.6.5, 2.7 - 2.7.1, 2.8 - 2.8.6, 2.9 - 2.9.2

External links
https://codex.wordpress.org/Changelog/3.0.1
https://core.trac.wordpress.org/query?status=closed&group=resolution&order=priority&milestone=3.0.1&resolution=fixed
https://core.trac.wordpress.org/changeset/15342
https://core.trac.wordpress.org/ticket/14119

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated privileged user via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Permissions, Privileges, and Access Controls in WordPress