Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2022-3477 — Improper Authentication in Newsmag

CWE-287 — Improper Authentication5 documents5 sources

Severity

9.8CRITICALNVD

EPSS

63.5%

top 1.58%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

Tagdiv Newsmag Tagdiv Newspaper Tagdiv Composer +3 more

Timeline

PublishedNov 14

Description

The tagDiv Composer WordPress plugin before 3.5, required by the Newspaper WordPress theme before 12.1 and Newsmag WordPress theme before 5.2.2, does not properly implement the Facebook login feature, allowing unauthenticated attackers to login as any user by just knowing their email address

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages6 packages

▶CVEListV5tagdiv/newsmag5.2.2 — 5.2.2

▶CVEListV5tagdiv/newspaper12.1 — 12.1

▶CVEListV5tagdiv/tagdiv_composer3.5 — 3.5

▶NVDtagdiv_composer_project/tagdiv_composer< 3.5

▶NVDnewsmag_project/newsmag< 5.2.2

🔴Vulnerability Details

CVEList

tagDiv Composer < 3.5 - Unauthenticated Account Takeover↗2022-11-14

▶

GHSA

GHSA-657r-v7qf-78qr: The tagDiv Composer WordPress plugin before 3↗2022-11-14

▶

VulnCheck

newsmag_project newsmag Improper Authentication↗2022

▶

💥Exploits & PoCs

Nuclei

WordPress tagDiv Composer < 3.5 - Authentication Bypass

▶