漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
WPCafe <= 3.0.14 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Modification via REST API
Vulnerability Description
The WPCafe – Restaurant Menu, Online Food Ordering & Table Booking System plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 3.0.14. This is due to the plugin not properly verifying that a user is authorized to perform an action. This makes it possible for authenticated attackers, with subscriber-level access and above, to list, create, update, delete, clone, and bulk-delete notification flow workflows that are intended to be managed only by administrators. The only protection on these endpoints is a wp_rest nonce check, which is obtainable by any logged-in user from the frontend page source.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N
Vulnerability Type
授权机制缺失
Vulnerability Title
WordPress WPCafe 授权问题漏洞
Vulnerability Description
WordPress WPCafe是WordPress基金会的一款CMS插件。 WordPress WPCafe 3.0.14及之前版本存在授权问题漏洞,该漏洞源于未正确验证用户授权,可能导致已认证的攻击者(订阅者及以上权限)列出、创建、更新、删除、克隆和批量删除本应由管理员管理的工作流。
CVSS Information
N/A
Vulnerability Type
N/A