CVE-2023-2987: Wordapp WordPress Plugin Authentication Bypass via Weak Signature

Vulnerability Summary: Wordapp WordPress Plugin Insufficiently Unique Cryptographic Signature 1. Vulnerability Overview The Wordapp WordPress plugin contains an "Insufficiently Unique Cryptographic Signature" vulnerability. Mechanism: The signature verification logic is flawed when the plugin processes configuration update requests (the function). The data contained within the parameter (such as the website URL) lacks unique verification. Impact: An attacker only needs to obtain a valid signature and its associated data to update configurations on all websites running the plugin. This allows the attacker to bypass authentication, obtain auto-login links, and achieve Authentication Bypass / Authorization Bypass against administrator accounts. 2. Scope of Impact Plugin Name: Wordapp WordPress Plugin Affected Versions: <= 1.6.0 Vulnerability Type: Authentication Bypass, Authorization Bypass, Insufficient Data Authenticity Verification CVE ID: CVE-2023-2987 3. Remediation Developers should modify the function or related signature verification logic. Ensure that contains unpredictable and unique parameters (e.g., user-specific random numbers or strong timestamps) to prevent signature reuse across sites or replay attacks. 4. POC and Exploitation Code HTTP Request Example (Configuration Update): HTTP Request Example (Obtaining Auto-Login Link): Python Exploitation Script Commands:

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2023-2987: Wordapp WordPress Plugin Authentication Bypass via Weak Signature