CVE-2024-10542

CRITICAL

Cleantalk Anti-spam < 6.44 - Missing Authorization

Title source: rule

Description

The Spam protection, Anti-Spam, FireWall by CleanTalk plugin for WordPress is vulnerable to unauthorized Arbitrary Plugin Installation due to an authorization bypass via reverse DNS spoofing on the checkWithoutToken function in all versions up to, and including, 6.43.2. This makes it possible for unauthenticated attackers to install and activate arbitrary plugins which can be leveraged to achieve remote code execution if another vulnerable plugin is installed and activated.

Exploits (1)

nomisec WORKING POC 2 stars

by ubaydev · poc

https://github.com/ubaydev/CVE-2024-10542

View Code ZIP pw:eip

References (3)

[Product] https://plugins.trac.wordpress.org/browser/cleantalk-spam-protect/tags/6.43.2/lib/Cleantalk/ApbctWP/RemoteCalls.php#L41

[Patch] https://plugins.trac.wordpress.org/changeset/3179819/cleantalk-spam-protect#file631

[Third Party Advisory] https://www.wordfence.com/threat-intel/vulnerabilities/id/d7eb5fad-bb62-4f0b-ad52-b16c3e442b62?source=cve

Scores

CVSS v3 9.8

EPSS 0.4097

EPSS Percentile 97.4%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-862

Status published

Products (2)

cleantalk/anti-spam < 6.44

cleantalk/Spam protection, Honeypot, Anti-Spam by CleanTalk < 6.43.2

Published Nov 26, 2024

Tracked Since Feb 18, 2026