CVE-2020-36724

The Wordable plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 3.1.1. This is due to the use of a user supplied hashing algorithm passed to the hash_hmac() function and the use of a loose comparison on the hash which allows an attacker to trick the function into thinking it has a valid hash. This makes it possible for unauthenticated attackers to gain administrator privileges.
Configurations

Configuration 1 (hide)

cpe:2.3:a:wordable:wordable:*:*:*:*:*:wordpress:*:*

History

21 Nov 2024, 05:30

Type Values Removed Values Added
References () https://blog.nintechnet.com/wordpress-plugins-and-themes-vulnerabilities-roundup/ - Exploit () https://blog.nintechnet.com/wordpress-plugins-and-themes-vulnerabilities-roundup/ - Exploit
References () https://plugins.trac.wordpress.org/changeset/2234193/wordable/trunk/wordable.php - Patch () https://plugins.trac.wordpress.org/changeset/2234193/wordable/trunk/wordable.php - Patch
References () https://www.wordfence.com/threat-intel/vulnerabilities/id/be1ab218-37bd-407a-8cb9-66f761849c21?source=cve - Third Party Advisory () https://www.wordfence.com/threat-intel/vulnerabilities/id/be1ab218-37bd-407a-8cb9-66f761849c21?source=cve - Third Party Advisory

13 Jun 2023, 13:57

Type Values Removed Values Added
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 9.8
CWE CWE-306
References (MISC) https://plugins.trac.wordpress.org/changeset/2234193/wordable/trunk/wordable.php - (MISC) https://plugins.trac.wordpress.org/changeset/2234193/wordable/trunk/wordable.php - Patch
References (MISC) https://www.wordfence.com/threat-intel/vulnerabilities/id/be1ab218-37bd-407a-8cb9-66f761849c21?source=cve - (MISC) https://www.wordfence.com/threat-intel/vulnerabilities/id/be1ab218-37bd-407a-8cb9-66f761849c21?source=cve - Third Party Advisory
References (MISC) https://blog.nintechnet.com/wordpress-plugins-and-themes-vulnerabilities-roundup/ - (MISC) https://blog.nintechnet.com/wordpress-plugins-and-themes-vulnerabilities-roundup/ - Exploit
CPE cpe:2.3:a:wordable:wordable:*:*:*:*:*:wordpress:*:*

07 Jun 2023, 02:44

Type Values Removed Values Added
New CVE

Information

Published : 2023-06-07 02:15

Updated : 2024-11-21 05:30


NVD link : CVE-2020-36724

Mitre link : CVE-2020-36724

CVE.ORG link : CVE-2020-36724


JSON object : View

Products Affected

wordable

  • wordable
CWE
CWE-306

Missing Authentication for Critical Function