CVE-2024-13772

Civi - Job Board & Freelance Marketplace WordPress Theme <= 2.1.4 - Authentication Bypass via Non-Randomized Password for SSO Accounts

Description

The Civi - Job Board & Freelance Marketplace WordPress Theme plugin for WordPress is vulnerable to authentication bypass in all versions up to, and including, 2.1.4. This is due to a lack of randomization of a password created during Single Sign-On via Google or Facebook. This makes it possible for unauthenticated attackers to change the password of arbitrary Candidate-level users if the attacker knows the username assigned to the victim during account creation.

References

Link	Tags
https://www.wordfence.com/threat-intel/vulnerabilities/id/bf04f458-7900-4dd3-84fb-169b74db97ab?source=cve	third party advisory
http://localhost:1337/wp-content/themes/civi/includes/class-ajax.php#L567	broken link
http://localhost:1337/wp-content/themes/civi/includes/class-ajax.php#L739	broken link

Frequently Asked Questions

What is the severity of CVE-2024-13772?: CVE-2024-13772 has been scored as a medium severity vulnerability.
How to fix CVE-2024-13772?: To fix CVE-2024-13772, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2024-13772 being actively exploited in the wild?: As for now, there are no information to confirm that CVE-2024-13772 is being actively exploited. According to its EPSS score, there is a ~0% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2024-13772?: CVE-2024-13772 affects uxper Civi - Job Board & Freelance Marketplace WordPress Theme.

Description

Categories

CWE-288 – Authentication Bypass Using an Alternate Path or Channel

CWE-306 – Missing Authentication for Critical Function

References

Frequently Asked Questions