The Rover IDX plugin for WordPress is vulnerable to Authentication Bypass in versions up to, and including, 3.0.0.2905. This is due to insufficient validation and capability check on the 'rover_idx_refresh_social_callback' function. This makes it possible for authenticated attackers, with subscriber-level permissions and above, to log in to administrator. The vulnerability is partially patched in version 3.0.0.2905 and fully patched in version 3.0.0.2906.
Metrics
Affected Vendors & Products
References
History
Fri, 25 Oct 2024 21:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Weaknesses | CWE-306 | |
CPEs | cpe:2.3:a:roveridx:rover_idx:*:*:*:*:*:wordpress:*:* |
Tue, 22 Oct 2024 15:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Roveridx
Roveridx rover Idx |
|
CPEs | cpe:2.3:a:roveridx:rover_idx:*:*:*:*:*:*:*:* | |
Vendors & Products |
Roveridx
Roveridx rover Idx |
|
Metrics |
ssvc
|
Tue, 22 Oct 2024 04:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | The Rover IDX plugin for WordPress is vulnerable to Authentication Bypass in versions up to, and including, 3.0.0.2905. This is due to insufficient validation and capability check on the 'rover_idx_refresh_social_callback' function. This makes it possible for authenticated attackers, with subscriber-level permissions and above, to log in to administrator. The vulnerability is partially patched in version 3.0.0.2905 and fully patched in version 3.0.0.2906. | |
Title | Rover IDX <= 3.0.0.2905 - Authenticated (Subscriber+) Authentication Bypass to Administrator | |
Weaknesses | CWE-288 | |
References |
|
|
Metrics |
cvssV3_1
|
MITRE
Status: PUBLISHED
Assigner: Wordfence
Published: 2024-10-22T04:31:57.893Z
Updated: 2024-10-22T14:28:56.137Z
Reserved: 2024-10-15T16:24:31.433Z
Link: CVE-2024-10002
Vulnrichment
Updated: 2024-10-22T14:28:50.549Z
NVD
Status : Analyzed
Published: 2024-10-22T05:15:03.513
Modified: 2024-10-25T21:20:39.167
Link: CVE-2024-10002
Redhat
No data.