The Contest Gallery plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 24.0.7. This is due to the plugin not properly validating a user's identity prior to updating their password. This makes it possible for unauthenticated attackers to change arbitrary user's passwords, including administrators, and leverage that to gain access to their account.
History

Mon, 02 Dec 2024 12:15:00 +0000

Type Values Removed Values Added
First Time appeared Contest Gallery
Contest Gallery contest Gallery
CPEs cpe:2.3:a:contest_gallery:contest_gallery:*:*:*:*:*:wordpress:*:*
Vendors & Products Contest Gallery
Contest Gallery contest Gallery
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}


Thu, 28 Nov 2024 10:00:00 +0000

Type Values Removed Values Added
Description The Contest Gallery plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 24.0.7. This is due to the plugin not properly validating a user's identity prior to updating their password. This makes it possible for unauthenticated attackers to change arbitrary user's passwords, including administrators, and leverage that to gain access to their account.
Title Contest Gallery <= 24.0.7 - Unauthenticated Arbitrary Password Reset to Privilege Escalation/Account Takeover
Weaknesses CWE-640
References
Metrics cvssV3_1

{'score': 9.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H'}


cve-icon MITRE

Status: PUBLISHED

Assigner: Wordfence

Published: 2024-11-28T09:47:09.248Z

Updated: 2024-12-02T11:14:03.748Z

Reserved: 2024-11-11T20:50:05.647Z

Link: CVE-2024-11103

cve-icon Vulnrichment

Updated: 2024-12-02T11:13:59.070Z

cve-icon NVD

Status : Received

Published: 2024-11-28T10:15:06.197

Modified: 2024-11-28T10:15:06.197

Link: CVE-2024-11103

cve-icon Redhat

No data.