CVE-2023-2437

CRITICAL EXPLOITED NUCLEI

UserPro < 5.1.1 - Unauthenticated Authentication Bypass via Facebook Login

Title source: llm

Exploitation Summary

CVE-2023-2437 has been observed exploited in the wild (reported by VulnCheck KEV). EIP tracks 1 public exploit from researchers including RxRCoder. A Nuclei detection template is also available.

AI-analyzed exploit summary This repository contains a functional Python exploit for CVE-2023-2437, an authentication bypass vulnerability in UserPro WordPress plugin <= 5.1.1. The exploit automates the process of identifying vulnerable sites, extracting admin usernames, and creating new administrator accounts.

Description

The UserPro plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 5.1.1. This is due to insufficient verification on the user being supplied during a Facebook login through the plugin. This makes it possible for unauthenticated attackers to log in as any existing user on the site, such as an administrator, if they have access to the email. An attacker can leverage CVE-2023-2448 and CVE-2023-2446 to get the user's email address to successfully exploit this vulnerability.

Exploits (1)

nomisec WORKING POC

by RxRCoder · remote

https://github.com/RxRCoder/CVE-2023-2437

View Code ZIP pw:eip

This repository contains a functional Python exploit for CVE-2023-2437, an authentication bypass vulnerability in UserPro WordPress plugin <= 5.1.1. The exploit automates the process of identifying vulnerable sites, extracting admin usernames, and creating new administrator accounts.

Classification

Working Poc 90%

Attack Type

Auth Bypass

Complexity

Moderate

Reliability

Reliable

Target: UserPro WordPress plugin <= 5.1.1

No auth needed

Prerequisites: Target site running vulnerable UserPro plugin · WordPress REST API accessible

MITRE ATT&CK

T1110 - Brute Force T1078 - Valid Accounts

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Nuclei Templates (1)

UserPro <= 5.1.1 - Authentication Bypass

CRITICALVERIFIEDby intelligent-ears

FOFA: body="/wp-content/plugins/userpro/"

References (3)

Core 3

Core References

Exploit, Third Party Advisory, VDB Entry

http://packetstormsecurity.com/files/175871/WordPress-UserPro-5.1.x-Password-Reset-Authentication-Bypass-Escalation.html

Product

https://codecanyon.net/item/userpro-user-profiles-with-social-login/5958681

Third Party Advisory

https://www.wordfence.com/threat-intel/vulnerabilities/id/b3cf9f38-c20e-40dc-a7a1-65b0c6ba7925?source=cve

Scores

CVSS v3 9.8

EPSS 0.0680

EPSS Percentile 93.2%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

VulnCheck KEV 2023-11-22

CWE

CWE-287 CWE-288

Status published

Products (2)

None/UserPro - Community and User Profile WordPress Plugin < 5.1.1

userproplugin/userpro < 5.1.1

Published Nov 22, 2023

Tracked Since Feb 18, 2026