CVE-2020-36837
published 2024-10-16CVE-2020-36837: The ThemeGrill Demo Importer plugin for WordPress is vulnerable to authentication bypass due to a missing capability check on the reset_wizard_actions function…
PriorityP183critical9.9CVSS 3.1
AVNACLPRLUINSCCHIHAH
ITWVulnCheck KEV
Exploited in the wild
EPSS
0.57%
42.8th percentile
The ThemeGrill Demo Importer plugin for WordPress is vulnerable to authentication bypass due to a missing capability check on the reset_wizard_actions function in versions 1.3.4 through 1.6.1. This makes it possible for authenticated attackers to reset the WordPress database. After which, if there is a user named 'admin', the attacker will become automatically logged in as an administrator.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| themegrill | themegrill_demo_importer | 1.3.4 – 1.6.1 | — |
CVSS provenance
nvdv3.19.9CRITICALCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
vulncheck9.9CRITICAL
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-xcq9-7g5q-j6pj: The ThemeGrill Demo Importer plugin for WordPress is vulnerable to authentication bypass due to a missing capability check on the reset_wizard_actions
ghsa_unreviewed·2024-10-16
CVE-2020-36837 [CRITICAL] CWE-862 GHSA-xcq9-7g5q-j6pj: The ThemeGrill Demo Importer plugin for WordPress is vulnerable to authentication bypass due to a missing capability check on the reset_wizard_actions
The ThemeGrill Demo Importer plugin for WordPress is vulnerable to authentication bypass due to a missing capability check on the reset_wizard_actions function in versions 1.3.4 through 1.6.1. This makes it possible for authenticated attackers to reset the WordPress database. After which, if there is a user named 'admin', the attacker will become automatically logged in as an administrator.
VulnCheck
ThemeGrill Demo Importer plugin for WordPress reset_wizard_actions Function Vulnerability
vulncheck·2020·CVSS 9.9
CVE-2020-36837 [CRITICAL] ThemeGrill Demo Importer plugin for WordPress reset_wizard_actions Function Vulnerability
ThemeGrill Demo Importer plugin for WordPress reset_wizard_actions Function Vulnerability
The ThemeGrill Demo Importer plugin for WordPress is vulnerable to authentication bypass due to a missing capability check on the reset_wizard_actions function in versions 1.3.4 through 1.6.1. This makes it possible for authenticated attackers to reset the WordPress database. After which, if there is a user named 'admin', the attacker will become automatically logged in as an administrator.
Affected: ThemeGrill ThemeGrill Demo Importer plugin for WordPress
Required Action: Apply remediations or mitigations per vendor instructions or discontinue use of the product if remediation or mitigations are unavailable.
Exploitation References: https://www.wordfence.com/threat-intel/vulnerabilities/wordpress
No detection rules found.
No public exploits indexed.
https://raw.githubusercontent.com/themegrill/themegrill-demo-importer/master/CHANGELOG.txthttps://www.openwall.com/lists/oss-security/2020/02/19/1https://www.webarxsecurity.com/critical-issue-in-themegrill-demo-importer/https://www.wordfence.com/threat-intel/vulnerabilities/id/8c0dc694-854e-4f96-8c2d-7251c41a3ee9?source=cve
2024-10-16
Published
Exploited in the wild