CVE-2022-1903

HIGH EXPLOITED NUCLEI

ARMember < 3.4.8 - Unauthenticated Account Takeover via Missing AJAX Action Authorization

Title source: llm

Exploitation Summary

CVE-2022-1903 has been observed exploited in the wild (reported by VulnCheck KEV). EIP tracks 1 public exploit from researchers including biulove0x. A Nuclei detection template is also available.

AI-analyzed exploit summary This PoC exploits CVE-2022-1903, an unauthenticated admin account takeover vulnerability in ARMember WordPress plugin versions < 3.4.8. It automates the process of changing the password of the first user retrieved via the WordPress REST API and validates the takeover by attempting to log in with the new credentials.

Description

The ARMember WordPress plugin before 3.4.8 is vulnerable to account takeover (even the administrator) due to missing nonce and authorization checks in an AJAX action available to unauthenticated users, allowing them to change the password of arbitrary users by knowing their username

Exploits (1)

nomisec WORKING POC 1 stars

by biulove0x · poc

https://github.com/biulove0x/CVE-2022-1903

View Code ZIP pw:eip

This PoC exploits CVE-2022-1903, an unauthenticated admin account takeover vulnerability in ARMember WordPress plugin versions < 3.4.8. It automates the process of changing the password of the first user retrieved via the WordPress REST API and validates the takeover by attempting to log in with the new credentials.

Classification

Working Poc 95%

Attack Type

Auth Bypass

Complexity

Trivial

Reliability

Reliable

Target: ARMember WordPress Plugin < 3.4.8

No auth needed

Prerequisites: Target must have ARMember plugin < 3.4.8 installed · WordPress REST API must be accessible · Target must have at least one user

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation T1110 - Brute Force

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Nuclei Templates (1)

ARMember < 3.4.8 - Unauthenticated Admin Account Takeover

HIGHVERIFIEDby theamanrawat

References (1)

Core 1

Core References

Exploit, Third Party Advisory x_refsource_misc

https://wpscan.com/vulnerability/28d26aa6-a8db-4c20-9ec7-39821c606a08

Scores

CVSS v3 8.1

EPSS 0.0715

EPSS Percentile 93.4%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

VulnCheck KEV 2022-06-06

CWE

CWE-862

Status published

Products (1)

armemberplugin/armember < 3.4.8

Published Jun 27, 2022

Tracked Since Feb 18, 2026