CVE-2023-1022Missing Authorization in WP Meta SEO

CWE-862Missing Authorization3 documents3 sources
Severity
4.3MEDIUMNVD
CNA5.4
EPSS
0.2%
top 53.76%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Joomunited WP Meta SEO
Timeline
PublishedFeb 28

Description

The WP Meta SEO plugin for WordPress is vulnerable to unauthorized options update due to a missing capability check on the wpmsGGSaveInformation function in versions up to, and including, 4.5.3. This makes it possible for authenticated attackers with subscriber-level access to update google analytics options maintained by the plugin. This vulnerability occurred as a result of the plugin relying on nonce checks as a means of access control, and that nonce being accessible to all authenticated use

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:NExploitability: 2.8 | Impact: 1.4

Affected Packages2 packages

CVEListV5joomunited/wp_meta_seo4.5.3

Patches

Patch: plugins.trac.wordpress.orgPatch: plugins.trac.wordpress.orgPatch: plugins.trac.wordpress.org

🔴Vulnerability Details

2
GHSA
GHSA-rcqq-5h75-3j53: The WP Meta SEO plugin for WordPress is vulnerable to unauthorized options update due to a missing capability check on the wpmsGGSaveInformation funct2023-02-28
CVEList
WP Meta SEO <= 4.5.3 - Missing Authorization in 'wpmsGGSaveInformation'2023-02-28
CVE-2023-1022 — Missing Authorization in WP Meta SEO | cvebase