CVE-2023-3325 – CMS Commander <= 2.287 - Authorization Bypass through Use of Insufficiently Unique Cryptographic Signature

https://notcve.org/view.php?id=CVE-2023-3325

19 Jun 2023 — The CMS Commander plugin for WordPress is vulnerable to authorization bypass due to the use of an insufficiently unique cryptographic signature on the 'cmsc_add_site' function in versions up to, and including, 2.287. This makes it possible for unauthenticated attackers to the plugin to change the '_cmsc_public_key' in the plugin config, providing access to the plugin's remote control functionalities, such as creating an admin access URL, which can be used for privilege escalation. This can only be exploited... • https://plugins.trac.wordpress.org/browser/cms-commander-client/tags/2.287/init.php#L88 • CWE-331: Insufficient Entropy CWE-345: Insufficient Verification of Data Authenticity •