CVE-2024-0421

MapPress Maps for WordPress < 2.88.16 - Unauthenticated Arbitrary Private/Draft Post Disclosure

Severity Score

5.3

*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

The MapPress Maps for WordPress plugin before 2.88.16 does not ensure that posts to be retrieve via an AJAX action is a public map, allowing unauthenticated users to read arbitrary private and draft posts.

El complemento MapPress Maps para WordPress anterior a 2.88.16 no garantiza que las publicaciones que se recuperarán mediante una acción AJAX sean un mapa público, lo que permite a usuarios no autenticados leer publicaciones arbitrarias privadas y borradores.

The MapPress Maps for WordPress plugin before 2.88.16 is affected by an IDOR as it does not ensure that posts to be retrieve via an AJAX action is a public map, allowing unauthenticated users to read arbitrary private and draft posts.

The MapPress Maps for WordPress plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the mapp_get_post AJAX action in all versions up to, and including, 2.88.15. This makes it possible for unauthenticated attackers to read arbitrary private and draft posts.

*Credits: WPScan

CVSS Scores

Wordfencev3.1 5.3

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

Low

Integrity

None

Availability

None

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2024-01-11 CVE Reserved
2024-01-17 CVE Published
2024-08-30 CVE Updated
2024-08-30 First Exploit
2024-10-05 EPSS Updated
---------- Exploited in Wild
---------- KEV Due Date

CWE

CWE-862: Missing Authorization

CAPEC

References (1)

URL	Tag	Source

URL	Date	SRC
https://wpscan.com/vulnerability/587acc47-1966-4baf-a380-6aa479a97c82	2024-08-30

URL	Date	SRC

URL	Date	SRC

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Unknown Search vendor "Unknown"		MapPress Maps For WordPress Search vendor "Unknown" for product "MapPress Maps For WordPress"				< 2.88.16 Search vendor "Unknown" for product "MapPress Maps For WordPress" and version " < 2.88.16"		en		Affected