CVE-2024-7493

CRITICAL

WPCOM Member <= 1.5.2.1 - Unauthenticated Privilege Escalation via User Registration

Title source: llm

Description

The WPCOM Member plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 1.5.2.1. This is due to the plugin allowing arbitrary data to be passed to wp_insert_user() during registration. This makes it possible for unauthenticated attackers to update their role to that of an administrator during registration.

References (3)

Core 3

Core References

https://plugins.trac.wordpress.org/changeset/3147399/wpcom-member/trunk/includes/form-validation.php

Issue Tracking

https://plugins.trac.wordpress.org/browser/wpcom-member/tags/1.5.2/includes/form-validation.php#L267

Third Party Advisory

https://www.wordfence.com/threat-intel/vulnerabilities/id/ec7f3e0c-a07c-4082-9b6b-12d0fbe0fdc8?source=cve

Scores

CVSS v3 9.8

EPSS 0.0056

EPSS Percentile 42.4%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable yes

Technical Impact total

Details

CWE

CWE-269

Status published

Products (2)

whyun/WPCOM Member < 1.5.2.1

wpcom/wpcom_member < 1.5.3

Published Sep 06, 2024

Tracked Since Feb 18, 2026