WordPress Plugin Vulnerabilities

Advanced Classifieds & Directory Pro < 3.1.2 - Missing Authorization to Arbitrary Attachment Deletion

Description

The Advanced Classifieds & Directory Pro plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the ajax_callback_delete_attachment function in all versions up to, and including, 3.0.0. This makes it possible for authenticated attackers, with subscriber access or higher, to delete arbitrary media uploads.

Affects Plugins

Plugin icon
advanced-classifieds-and-directory-pro
Fixed in 3.1.2

References

CVE
CVE-2024-2222
URL
https://www.wordfence.com/threat-intel/vulnerabilities/id/bc5da189-838d-4c0b-a734-283c4da36473

Classification

Type
NO AUTHORISATION
OWASP top 10
A5: Broken Access Control
CWE
CWE-862
CVSS
4.3 (medium)

Miscellaneous

Original Researcher
Lucio Sá
Verified
No
WPVDB ID
cd208488-9da4-40cf-b194-c2b53835a18b

Timeline

Publicly Published
2024-03-19 (about 2 months ago)
Added
2024-03-19 (about 2 months ago)
Last Updated
2024-03-19 (about 2 months ago)

Other

Published
Title
Published
2023-09-04
Title
rtMedia for WordPress, BuddyPress and bbPress < 4.6.15 - Missing Authorization to Sensitive Information Exposure
Published
2022-08-22
Title
WP Hotel Booking < 2.0.1 - Unauthenticated Arbitrary Settings Update
Published
2023-12-06
Title
System Dashboard < 2.8.8 - Missing Authorization to Information Disclosure (sd_option_value)
Published
2022-07-12
Title
Discy < 5.0 - Subscriber+ Broken Access Control to change settings
Published
2024-04-29
Title
Embed Google Fonts <= 3.1.0 - Missing Authorization