CVE-2023-1023 — Missing Authorization in WP Meta SEO

CWE-862 — Missing Authorization CWE-476 — NULL Pointer Dereference4 documents4 sources

Severity

4.3MEDIUMNVD

CNA5.4

EPSS

0.2%

top 53.76%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Joomunited WP Meta SEO

Timeline

PublishedFeb 28

Latest updateApr 2

Description

The WP Meta SEO plugin for WordPress is vulnerable to unauthorized plugin settings update due to a missing capability check on the saveSitemapSettings function in versions up to, and including, 4.5.3. This makes it possible for authenticated attackers with subscriber-level access to change sitemap-related settings of the plugin. This vulnerability occurred as a result of the plugin relying on nonce checks as a means of access control, and that nonce being accessible to all authenticated users re…

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:NExploitability: 2.8 | Impact: 1.4

Affected Packages2 packages

▶CVEListV5joomunited/wp_meta_seo4.5.3

▶NVDjoomunited/wp_meta_seo4.5.3

Patches

Patch: plugins.trac.wordpress.org ↗Patch: plugins.trac.wordpress.org ↗Patch: plugins.trac.wordpress.org ↗

🔴Vulnerability Details

GHSA

GHSA-736c-6582-j82m: The WP Meta SEO plugin for WordPress is vulnerable to unauthorized plugin settings update due to a missing capability check on the saveSitemapSettings↗2023-02-28

▶

CVEList

WP Meta SEO <= 4.5.3 - Missing Authorization in 'saveSitemapSettings'↗2023-02-28

▶

📋Vendor Advisories

Red Hat

kernel: fs/ntfs3: NULL pointer dereference issue↗2024-04-02

▶