CVE-2023-2869
First published: Wed Jul 12 2023(Updated: )
The WP-Members Membership plugin for WordPress is vulnerable to unauthorized plugin settings update due to a missing capability check on the do_field_reorder function in versions up to, and including, 3.4.7.3. This makes it possible for authenticated attackers with subscriber-level access to reorder form elements on login forms.
Credit: security@wordfence.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Wp-members Project Wp-members | <3.4.8 | |
| WordPress | <3.4.8 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://plugins.trac.wordpress.org/browser/wp-members/trunk/includes/admin/tabs/class-wp-members-admin-tab-fields.php?rev=2895180#L799
- https://plugins.trac.wordpress.org/changeset/2920897/wp-members/trunk/includes/admin/tabs/class-wp-members-admin-tab-fields.php
- https://www.wordfence.com/threat-intel/vulnerabilities/id/bf05a79a-0375-4c9d-bbf0-a87484327b87?source=cve
Frequently Asked Questions
What is CVE-2023-2869?
CVE-2023-2869 is a vulnerability in the WP-Members Membership plugin for WordPress that allows authenticated attackers with subscriber-level access to unauthorizedly update plugin settings.
How severe is CVE-2023-2869?
CVE-2023-2869 has a severity level of medium.
Which version of WP-Members Membership plugin is affected by CVE-2023-2869?
Versions up to, and including, 3.4.7.3 of the WP-Members Membership plugin are affected by CVE-2023-2869.
How can an attacker exploit CVE-2023-2869?
Authenticated attackers with subscriber-level access can exploit CVE-2023-2869 to reorder plugin settings.
Are there any references related to CVE-2023-2869?
Yes, you can find references related to CVE-2023-2869 here: [Reference 1](https://plugins.trac.wordpress.org/browser/wp-members/trunk/includes/admin/tabs/class-wp-members-admin-tab-fields.php?rev=2895180#L799), [Reference 2](https://plugins.trac.wordpress.org/changeset/2920897/wp-members/trunk/includes/admin/tabs/class-wp-members-admin-tab-fields.php), [Reference 3](https://www.wordfence.com/threat-intel/vulnerabilities/id/bf05a79a-0375-4c9d-bbf0-a87484327b87?source=cve).
- collector/nvd-latest
- collector/nvd-index
- agent/author
- agent/type
- agent/severity
- agent/remedy
- agent/references
- agent/weakness
- agent/description
- agent/first-publish-date
- agent/event
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/softwarecombine
- agent/source
- agent/tags
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- vendor/wp-members project
- canonical/wp-members project wp-members
- vendor/butlerblog
- canonical/wordpress