Vulnerability Description
The Jeg Elementor Kit plugin for WordPress is vulnerable to authorization bypass in various AJAX actions in versions up to, and including, 2.5.6. Authenticated users can use an easily available nonce value to create header templates and make additional changes to the site, as the plugin does not use capability checks for this purpose.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Jegtheme | Jeg Elementor Kit | < 2.5.7 |
Related Weaknesses (CWE)
References
- https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&newExploitThird Party Advisory
- https://wordpress.org/plugins/jeg-elementor-kit/#developersProductRelease NotesThird Party Advisory
- https://www.wordfence.com/threat-intel/vulnerabilities/id/84b616fa-ff64-49e8-8c4
- https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&newExploitThird Party Advisory
- https://wordpress.org/plugins/jeg-elementor-kit/#developersProductRelease NotesThird Party Advisory
- https://www.wordfence.com/threat-intel/vulnerabilities/id/84b616fa-ff64-49e8-8c4Third Party Advisory
FAQ
What is CVE-2022-3794?
CVE-2022-3794 is a vulnerability with a CVSS score of 5.4 (MEDIUM). The Jeg Elementor Kit plugin for WordPress is vulnerable to authorization bypass in various AJAX actions in versions up to, and including, 2.5.6. Authenticated users can use an easily available nonce...
How severe is CVE-2022-3794?
CVE-2022-3794 has been rated MEDIUM with a CVSS base score of 5.4/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2022-3794?
Check the references section above for vendor advisories and patch information. Affected products include: Jegtheme Jeg Elementor Kit.