CVE-2024-13446

CWE-2883 documents3 sources
Severity
9.8CRITICAL
EPSS
0.6%
top 29.50%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Amentotech Workreap
Timeline
PublishedMar 12

Description

The Workreap plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 3.2.5. This is due to the plugin not properly validating a user's identity prior to (1) performing a social auto-login or (2) updating their profile details (e.g. password). This makes it possible for unauthenticated attackers to (1) login as an arbitrary user if their email address is known or (2) change an arbitrary user's password, including administrators, and le

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages2 packages

NVDamentotech/workreap< 3.2.6
CVEListV5amentotech/workreap3.2.5

🔴Vulnerability Details

2
CVEList
Workreap <= 3.2.5 - Unauthenticated Privilege Escalation via Account Takeover2025-03-12
GHSA
GHSA-jmq5-mqx2-5f5c: The Workreap plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 32025-03-12
CVE-2024-13446 (CRITICAL CVSS 9.8) | The Workreap plugin for WordPress i | cvebase.io