Description

WordPress Plugin Ultimate Member-User Profile, Registration, Login, Member Directory, Content Restriction & Membership is prone to a privilege escalation vulnerability. Exploiting this issue may allow attackers to bypass the expected capabilities check and perform otherwise restricted actions; other attacks are also possible. WordPress Plugin Ultimate Member-User Profile, Registration, Login, Member Directory, Content Restriction & Membership version 2.0.50 is vulnerable; prior versions may also be affected.

Remediation

Update to plugin version 2.0.51 or latest

References

https://www.pluginvulnerabilities.com/2019/06/03/privilege-escalation-vulnerability-only-partially-fixed-in-wordpress-plugin-ultimate-member-due-to-use-of-is_admin/

https://plugins.svn.wordpress.org/ultimate-member/trunk/readme.txt

Related Vulnerabilities

WordPress Plugin OAuth client Single Sign On for WordPress (OAuth 2.0 SSO) Security Bypass (3.0.3)

Apache Traffic Server Improper Input Validation Vulnerability (CVE-2017-5659)

WordPress Plugin HubSpot All-In-One Marketing-Forms, Popups, Live Chat Cross-Site Scripting (7.5.5)

Apache Tomcat Resource Management Errors Vulnerability (CVE-2011-0534)

jQuery PrettyPhoto Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-9478)

Severity

High

Classification

CWE-264 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N

Tags

Missing Update Privilege Escalation