WordPress Plugin Vulnerabilities

Login with phone number < 1.7.20 - Missing Authorization

Description

The Login with phone number plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the idehweb_lwp_update_billing_phones function in versions up to, and including, 1.7.18. This makes it possible for authenticated attackers, with subscriber-level access and above, to modify billing phone numbers.

Affects Plugins

Plugin icon
login-with-phone-number
Fixed in 1.7.20

References

CVE
CVE-2024-34371
URL
https://www.wordfence.com/threat-intel/vulnerabilities/id/2756dcf4-715f-4a7b-855c-7347455e0323

Classification

Type
NO AUTHORISATION
OWASP top 10
A5: Broken Access Control
CWE
CWE-862
CVSS
4.3 (medium)

Miscellaneous

Original Researcher
Dhabaleshwar Das
Verified
No
WPVDB ID
e024bf11-3f6a-46ef-af44-b406b5ed9280

Timeline

Publicly Published
2024-05-03 (about 17 days ago)
Added
2024-05-07 (about 13 days ago)
Last Updated
2024-05-07 (about 13 days ago)

Other

Published
Title
Published
2023-05-19
Title
Groundhogg < 2.7.10 - Lack of Authorization for Non-Arbitrary File upload
Published
2024-03-07
Title
affiliate-toolkit – WordPress Affiliate Plugin < 3.5.5 - Missing Authorization via atkp_create_list
Published
2024-04-29
Title
Woo Total Sales <= 3.1.4 - Missing Authorization to Unauthenticated Sales Report Retrieval
Published
2024-04-29
Title
ReviewX < 1.6.22 - Missing Authorization
Published
2023-11-13
Title
Delete Duplicate Posts < 4.9 - Missing Authorization via AJAX Actions