Wordable Plugin up to 3.1.1 on WordPress hash_hmac authentication bypass
| CVSS Meta Temp Score | Current Exploit Price (≈) | CTI Interest Score |
|---|---|---|
| 8.9 | $0-$5k | 0.00 |
Summary
A vulnerability classified as critical has been found in Wordable Plugin up to 3.1.1 on WordPress. This impacts the function hash_hmac. Performing a manipulation results in authentication bypass.
This vulnerability was named CVE-2020-36724. The attack may be initiated remotely. There is no available exploit.
It is recommended to apply a patch to fix this issue.
Details
A vulnerability, which was classified as critical, was found in Wordable Plugin up to 3.1.1 on WordPress (WordPress Plugin). This affects the function hash_hmac. The manipulation with an unknown input leads to a authentication bypass vulnerability. CWE is classifying the issue as CWE-288. A product requires authentication, but the product has an alternate path or channel that does not require authentication. This is going to have an impact on confidentiality, integrity, and availability. The summary by CVE is:
The Wordable plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 3.1.1. This is due to the use of a user supplied hashing algorithm passed to the hash_hmac() function and the use of a loose comparison on the hash which allows an attacker to trick the function into thinking it has a valid hash. This makes it possible for unauthenticated attackers to gain administrator privileges.
The weakness was presented 06/07/2023. It is possible to read the advisory at wordfence.com. This vulnerability is uniquely identified as CVE-2020-36724 since 06/06/2023. Technical details of the vulnerability are known, but there is no available exploit.
Applying the patch 2234193 is able to eliminate this problem.
Be aware that VulDB is the high quality source for vulnerability data.
Product
Type
Name
Version
CPE 2.3
CPE 2.2
CVSSv4
VulDB Vector: 🔍VulDB Reliability: 🔍
CVSSv3
VulDB Meta Base Score: 9.0VulDB Meta Temp Score: 8.9
VulDB Base Score: 7.3
VulDB Temp Score: 7.0
VulDB Vector: 🔍
VulDB Reliability: 🔍
NVD Base Score: 9.8
NVD Vector: 🔍
CNA Base Score: 9.8
CNA Vector (Wordfence): 🔍
CVSSv2
| AV | AC | Au | C | I | A |
|---|---|---|---|---|---|
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
|---|---|---|---|---|---|
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
VulDB Base Score: 🔍
VulDB Temp Score: 🔍
VulDB Reliability: 🔍
Exploiting
Class: Authentication bypassCWE: CWE-288 / CWE-287
CAPEC: 🔍
ATT&CK: 🔍
Physical: No
Local: No
Remote: Yes
Availability: 🔍
Status: Not defined
EPSS Score: 🔍
EPSS Percentile: 🔍
Price Prediction: 🔍
Current Price Estimation: 🔍
| 0-Day | Unlock | Unlock | Unlock | Unlock |
|---|---|---|---|---|
| Today | Unlock | Unlock | Unlock | Unlock |
Threat Intelligence
Interest: 🔍Active Actors: 🔍
Active APT Groups: 🔍
Countermeasures
Recommended: PatchStatus: 🔍
0-Day Time: 🔍
Patch: 2234193
Timeline
06/06/2023 🔍06/07/2023 🔍
06/07/2023 🔍
04/09/2026 🔍
Sources
Advisory: 2234193Status: Confirmed
CVE: CVE-2020-36724 (🔍)
GCVE (CVE): GCVE-0-2020-36724
GCVE (VulDB): GCVE-100-230943
Entry
Created: 06/07/2023 07:56Updated: 04/09/2026 20:48
Changes: 06/07/2023 07:56 (51), 07/05/2023 14:14 (1), 04/09/2026 20:48 (26)
Complete: 🔍
Cache ID: 216::103
Be aware that VulDB is the high quality source for vulnerability data.
No comments yet. Languages: en.
Please log in to comment.