CVE-2024-50477

CRITICAL NUCLEI

Stacks Mobile App Builder <= 5.2.3 - Authentication Bypass

Title source: llm

Exploitation Summary

EIP tracks 2 public exploits for CVE-2024-50477. PoCs published by stealthcopter, RandomRobbieBF. A Nuclei detection template is also available.

AI-analyzed exploit summary This exploit demonstrates an authentication bypass vulnerability in Stacks Mobile App Builder by manipulating query parameters to impersonate a user (typically the administrator). The attack involves appending specific parameters to the URL to gain unauthorized access to the admin dashboard.

Description

Authentication Bypass Using an Alternate Path or Channel vulnerability in Stacks Stacks Mobile App Builder stacks-mobile-app-builder allows Authentication Bypass.This issue affects Stacks Mobile App Builder: from n/a through <= 5.2.3.

Exploits (2)

exploitdb WORKING POC

by stealthcopter · textwebappsmultiple

https://www.exploit-db.com/exploits/52357

View Code ZIP pw:eip

This exploit demonstrates an authentication bypass vulnerability in Stacks Mobile App Builder by manipulating query parameters to impersonate a user (typically the administrator). The attack involves appending specific parameters to the URL to gain unauthorized access to the admin dashboard.

Classification

Working Poc 100%

Attack Type

Auth Bypass

Complexity

Trivial

Reliability

Reliable

Target: Stacks Mobile App Builder <= 5.2.3

No auth needed

Prerequisites: Target site running vulnerable version of Stacks Mobile App Builder · User ID to impersonate (default is 1 for admin)

MITRE ATT&CK

T1189 - Drive-by Compromise T1552 - Unsecured Credentials

devstral-2 · analyzed Feb 16, 2026 Full analysis →

nomisec WORKING POC

by RandomRobbieBF · poc

https://github.com/RandomRobbieBF/CVE-2024-50477

View Code ZIP pw:eip

This PoC demonstrates an authentication bypass vulnerability in Stacks Mobile App Builder <= 5.2.3. By manipulating the `uid` parameter in a crafted URL, an unauthenticated attacker can log in as any user, including administrators.

Classification

Working Poc 90%

Attack Type

Auth Bypass

Complexity

Trivial

Reliability

Reliable

Target: Stacks Mobile App Builder <= 5.2.3

No auth needed

Prerequisites: Target must be running Stacks Mobile App Builder <= 5.2.3 · Knowledge of a valid user ID (e.g., admin ID)

MITRE ATT&CK

T1550 - Use Alternate Authentication Material

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Nuclei Templates (1)

WordPress Stacks Mobile App Builder <=5.2.3 - Authentication Bypass

CRITICALVERIFIEDby stealthcopter,vijay-sutar

References (2)

Core 2

Core References

Vdb Entry vdb-entry

https://patchstack.com/database/Wordpress/Plugin/stacks-mobile-app-builder/vulnerability/wordpress-stacks-mobile-app-builder-plugin-5-2-3-account-takeover-vulnerability?_s_id=cve

Third Party Advisory

https://patchstack.com/database/vulnerability/stacks-mobile-app-builder/wordpress-stacks-mobile-app-builder-plugin-5-2-3-account-takeover-vulnerability?_s_id=cve

Scores

CVSS v3 9.8

EPSS 0.8403

EPSS Percentile 99.3%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation poc

Automatable yes

Technical Impact total

Details

CWE

CWE-288 CWE-306

Status published

Products (2)

Stacks/Stacks Mobile App Builder < 5.2.3

stacksmarket/stacks_mobile_app_builder < 5.2.3

Published Oct 28, 2024

Tracked Since Feb 18, 2026