CVE-2023-2732

CRITICAL EXPLOITED NUCLEI

Inspireui Mstore API < 3.9.2 - Authentication Bypass

Title source: rule

Description

The MStore API plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 3.9.2. This is due to insufficient verification on the user being supplied during the add listing REST API request through the plugin. This makes it possible for unauthenticated attackers to log in as any existing user on the site, such as an administrator, if they have access to the user id.

Exploits (4)

nomisec WORKING POC 6 stars

by RandomRobbieBF · remote

https://github.com/RandomRobbieBF/CVE-2023-2732

View Code ZIP pw:eip

nomisec SCANNER 2 stars

by ThatNotEasy · remote

https://github.com/ThatNotEasy/CVE-2023-2732

View Code ZIP pw:eip

nomisec WORKING POC

by Jenderal92 · remote

https://github.com/Jenderal92/WP-CVE-2023-2732

View Code ZIP pw:eip

inthewild SCANNER

poc

https://github.com/pari-malam/cve-2023-2732

View Code ZIP pw:eip

Nuclei Templates (1)

MStore API <= 3.9.2 - Authentication Bypass

CRITICALVERIFIEDby DhiyaneshDK

Shodan: http.html:/wp-content/plugins/mstore-api/

FOFA: body=/wp-content/plugins/mstore-api/

References (3)

[Patch] https://plugins.trac.wordpress.org/browser/mstore-api/tags/3.9.0/controllers/listing-rest-api/class.api.fields.php#L1079

[Patch] https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&new=2916124%40mstore-api&old=2915729%40mstore-api&sfp_email=&sfph_mail=#file58

[Third Party Advisory] https://www.wordfence.com/threat-intel/vulnerabilities/id/f00761a7-fe24-49a3-b3e3-a471e05815c1?source=cve

Scores

CVSS v3 9.8

EPSS 0.9000

EPSS Percentile 99.6%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Exploitation Intel

VulnCheck KEV 2024-05-06

Classification

Status published

Affected Products (1)

inspireui/mstore_api < 3.9.2

Timeline

Published May 25, 2023

Tracked Since Feb 18, 2026