CVE-2024-1844 in RevivePress Plugininfo

Summary

by MITRE • 03/20/2024

The RevivePress – Keep your Old Content Evergreen plugin for WordPress is vulnerable to unauthorized access and modification of data due to a missing capability check on the import_data and copy_data functions in all versions up to, and including, 1.5.6. This makes it possible for authenticated attackers, with subscriber-level access or higher, to overwrite plugin settings and view them.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

Analysis

by VulDB Data Team • 04/13/2026

The RevivePress plugin for WordPress presents a critical authorization vulnerability that undermines the security posture of affected installations. This vulnerability stems from insufficient capability validation within the plugin's core functionality, specifically impacting the import_data and copy_data functions that are accessible to authenticated users. The flaw exists in all versions up to and including 1.5.6, making it a widespread concern for WordPress administrators who have deployed this particular plugin. The vulnerability is particularly concerning because it allows attackers with minimal privileges to escalate their access and manipulate sensitive plugin configurations.

The technical nature of this vulnerability can be categorized under CWE-863, which addresses incorrect authorization scenarios where the system fails to properly verify user permissions before executing privileged operations. The missing capability check creates an attack surface where authenticated users can invoke functions that should only be accessible to administrators or users with specific privileges. When an attacker with subscriber-level access or higher attempts to utilize the import_data or copy_data endpoints, the system fails to validate whether the user possesses the necessary permissions to perform these operations. This oversight allows unauthorized modification of plugin settings and potential data exposure.

The operational impact of this vulnerability extends beyond simple privilege escalation, as it provides attackers with the ability to manipulate plugin configurations that may control how content is managed and displayed within WordPress installations. The ability to overwrite plugin settings creates opportunities for attackers to modify content presentation, alter access controls, or potentially introduce malicious configurations that could affect the entire website's functionality. Additionally, the vulnerability allows attackers to view sensitive plugin settings, which could reveal configuration details that might aid in further exploitation or provide insights into the website's overall architecture. This access to configuration data could enable more sophisticated attacks or help attackers identify other potential vulnerabilities within the WordPress ecosystem.

Mitigation strategies should focus on immediate remediation through plugin updates to versions that address the capability check vulnerability. WordPress administrators should prioritize upgrading to the latest available version of RevivePress that includes proper authorization controls. The implementation of role-based access controls within the WordPress environment can provide additional defense layers, ensuring that users with lower privileges cannot access functions that require higher permissions. Network monitoring should be enhanced to detect unusual activity patterns related to plugin data manipulation, and regular security audits should verify that all plugin components properly enforce authorization checks. The vulnerability also highlights the importance of following secure coding practices that emphasize capability validation and proper access control implementation, aligning with ATT&CK technique T1078 for valid accounts and T1566 for credential harvesting through unauthorized access to system resources.

Responsible

Wordfence

Reservation

02/23/2024

Disclosure

03/20/2024

Moderation

accepted

CPE

ready

EPSS

0.00419

KEV

no

Activities

very low

Sources

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!