CVE-2024-1747

The WooCommerce Customers Manager WordPress plugin before 30.2 does not have authorisation and CSRF in various AJAX actions, allowing any authenticated users, such as subscriber, to call them and update/delete/create customer metadata, also leading to Stored Cross-Site Scripting due to the lack of escaping of said metadata values.

CVSS v3 6.5 MEDIUM

6.5^/10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 2.3 / Impact : 3.7

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required LOW

User Interaction REQUIRED

Confidentiality Impact LOW

Integrity Impact LOW

Availability Impact LOW

Scope CHANGED

References

Link	Resource
https://wpscan.com/vulnerability/17e45d4d-0ee1-4863-a8a4-df8587f448ec/

Configurations

No configuration.

History

01 Aug 2024, 15:35

Type	Values Removed	Values Added
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 6.5

01 Aug 2024, 12:42

Type	Values Removed	Values Added
Summary		(es) El complemento de WordPress WooCommerce Customers Manager anterior a 30.2 no tiene autorización ni CSRF en varias acciones AJAX, lo que permite a cualquier usuario autenticado, como un suscriptor, llamarlos y actualizar/eliminar/crear metadatos del cliente, lo que también genera Cross Site Scripting almacenado debido a la falta de escape de dichos valores de metadatos.

01 Aug 2024, 06:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2024-08-01 06:15

Updated : 2024-08-01 15:35

NVD link : CVE-2024-1747

Mitre link : CVE-2024-1747

CVE.ORG link : CVE-2024-1747

JSON object : View

Products Affected

No product.

CWE

No CWE.

6.5 /10