CVE-2024-9305: AppPresser – Mobile App Framework <= 4.4.4 - Privilege Escalation and Account Takeover via Weak OTP
First published: Wed Oct 16 2024(Updated: )
The AppPresser – Mobile App Framework plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 4.4.4. This is due to the appp_reset_password() and validate_reset_password() functions not having enough controls to prevent a successful brute force attack of the OTP to change a password, or verify that a password reset request came from an authorized user. This makes it possible for unauthenticated attackers to generate and brute force an OTP that makes it possible to change any users passwords, including an administrator.
Credit: security@wordfence.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| AppPresser | <=4.4.4 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://www.wordfence.com/threat-intel/vulnerabilities/id/45647fa6-a98d-4eb4-a287-f523e434688b?source=cve
- https://plugins.trac.wordpress.org/browser/apppresser/tags/4.4.4/inc/AppPresser_Ajax_Extras.php#L31
- https://plugins.trac.wordpress.org/browser/apppresser/tags/4.4.4/inc/AppPresser_WPAPI_Mods.php#L92
- https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&old=3168744%40apppresser&new=3168744%40apppresser&sfp_email=&sfph_mail=
Frequently Asked Questions
What is the severity of CVE-2024-9305?
CVE-2024-9305 is classified as a privilege escalation vulnerability that could lead to account takeover.
How do I fix CVE-2024-9305?
To fix CVE-2024-9305, ensure you update the AppPresser – Mobile App Framework plugin to version 4.4.5 or later.
Which versions of the AppPresser Mobile App Framework are affected by CVE-2024-9305?
CVE-2024-9305 affects all versions of the AppPresser Mobile App Framework up to and including 4.4.4.
What causes CVE-2024-9305?
CVE-2024-9305 is caused by insufficient controls in the appp_reset_password() and validate_reset_password() functions.
Who is vulnerable to CVE-2024-9305?
Any WordPress site using the affected versions of the AppPresser – Mobile App Framework plugin is vulnerable to CVE-2024-9305.
- agent/title
- agent/weakness
- agent/references
- agent/type
- agent/first-publish-date
- agent/description
- agent/author
- agent/severity
- agent/event
- collector/nvd-api
- source/NVD
- agent/last-modified-date
- collector/mitre-cve
- source/MITRE
- agent/trending
- agent/epss
- collector/epss-latest
- source/FIRST
- agent/source
- agent/tags
- agent/softwarecombine
- agent/guess-ai
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- vendor/apppresser
- canonical/apppresser