Exploitation Summary
EIP tracks 1 public exploit for CVE-2024-9106. PoCs published by RandomRobbieBF.
AI-analyzed exploit summary The PoC demonstrates an authentication bypass vulnerability in the Wechat Social Login WordPress plugin (versions <= 1.3.0) by manipulating the `uid` parameter to log in as any user. The exploit requires the app secret to be unset (default empty value) and leverages insufficient verification during social login.
Description
The Wechat Social login plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 1.3.0. This is due to insufficient verification on the user being supplied during the social login. This makes it possible for unauthenticated attackers to log in as any existing user on the site, such as an administrator, if they have access to the user id. This is only exploitable if the app secret is not set, so it has a default empty value.
Exploits (1)
The PoC demonstrates an authentication bypass vulnerability in the Wechat Social Login WordPress plugin (versions <= 1.3.0) by manipulating the `uid` parameter to log in as any user. The exploit requires the app secret to be unset (default empty value) and leverages insufficient verification during social login.
References (2)
Scores
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H