// For flags

CVE-2024-0588

Paid Memberships Pro <= 2.12.10 - Cross-Site Request Forgery

Severity Score

4.3
*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

1
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

Track
*SSVC
Descriptions

The Paid Memberships Pro – Content Restriction, User Registration, & Paid Subscriptions plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.12.10. This is due to missing nonce validation on the pmpro_lifter_save_streamline_option() function. This makes it possible for unauthenticated attackers to enable the streamline setting with Lifter LMS via a forged request granted they can trick a site administrator into performing an action such as clicking on a link.

El complemento Paid Memberships Pro – Content Restriction, User Registration, &amp; Paid Subscriptions para WordPress es vulnerable a Cross-Site Request Forgery en todas las versiones hasta la 2.12.10 incluida. Esto se debe a que falta la validación nonce en la función pmpro_lifter_save_streamline_option(). Esto hace posible que atacantes no autenticados habiliten la configuración optimizada con Lifter LMS a través de una solicitud falsificada, siempre que puedan engañar a un administrador del sitio para que realice una acción como hacer clic en un enlace.

The Paid Memberships Pro – Content Restriction, User Registration, & Paid Subscriptions plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.12.10. This is due to missing nonce validation on the pmpro_lifter_save_streamline_option() function. This makes it possible for unauthenticated attackers to enable the streamline setting with Lifter LMS via a forged request granted they can trick a site administrator into performing an action such as clicking on a link. CVE-2024-32793 and CVE-2024-32794 appear to be a duplicate of this issue.

*Credits: Kodai Kubono
CVSS Scores
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
Required
Scope
Unchanged
Confidentiality
None
Integrity
Low
Availability
None
* Common Vulnerability Scoring System
SSVC
  • Decision:Track
Exploitation
None
Automatable
No
Tech. Impact
Partial
* Organization's Worst-case Scenario
Timeline
  • 2024-01-16 CVE Reserved
  • 2024-03-25 CVE Published
  • 2024-04-10 EPSS Updated
  • 2024-08-01 CVE Updated
  • 2024-09-11 First Exploit
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
CWE
  • CWE-352: Cross-Site Request Forgery (CSRF)
CAPEC
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Strangerstudios
Search vendor "Strangerstudios"
 Paid Memberships Pro – Content Restriction, User Registration, & Paid Subscriptions
Search vendor "Strangerstudios" for product "Paid Memberships Pro – Content Restriction, User Registration, & Paid Subscriptions"
 <= 2.12.10
Search vendor "Strangerstudios" for product "Paid Memberships Pro – Content Restriction, User Registration, & Paid Subscriptions" and version " <= 2.12.10"
en
Affected