CVE-2023-2440

HIGH

UserPro < 5.1.1 - Cross-Site Request Forgery via Missing Nonce Validation

Title source: llm

Description

The UserPro plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 5.1.1. This is due to missing nonce validation in the 'admin_page', 'userpro_verify_user' and 'verifyUnverifyAllUsers' functions. This makes it possible for unauthenticated attackers to modify the role of verified users to elevate verified user privileges to that of any user such as 'administrator' via a forged request granted they can trick a site administrator into performing an action such as clicking on a link.

References (2)

Core 2

Core References

Product

https://codecanyon.net/item/userpro-user-profiles-with-social-login/5958681

Third Party Advisory

https://www.wordfence.com/threat-intel/vulnerabilities/id/73600498-f55c-4b8e-a625-4f292e58e0ee?source=cve

Scores

CVSS v3 8.8

EPSS 0.0028

EPSS Percentile 19.3%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

CWE

CWE-352

Status published

Products (2)

None/UserPro - Community and User Profile WordPress Plugin < 5.1.1

userproplugin/userpro < 5.1.1

Published Nov 22, 2023

Tracked Since Feb 18, 2026