Boletines de Vulnerabilidades

Vulnerability in wpCentral Plugin Leads to Privilege Escalation


Información sobre el sistema

   
Software afectado Wordpress

Descripción

https://www.wordfence.com/blog/2020/02/vulnerability-in-wpcentral-plugin-leads-to-privilege-escalation/ Description: Improper Access Control to Privilege EscalationAffected Plugin: wpCentralAffected Versions: <= 1.5.0CVE ID: CVE-2020-9043CVSS Score: 8.8 (High)CVSS Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HPatched Version: 1.5.1 On February 13th, our Threat Intelligence team discovered a vulnerability in wpCentral, a WordPress plugin installed on over 60,000 sites. The flaw allowed

More info:

https://www.wordfence.com/blog/2020/02/vulnerability-in-wpcentral-plugin-leads-to-privilege-escalation/

Identificadores estándar

Propiedad Valor
CVE CVE-2020-9043.

Histórico de versiones

Versión Comentario Fecha
1.0 Advisory issued 2020-02-20

Miembros de

Ministerio de Defensa
CNI
CCN
CCN-CERT