Vulnerability Description
The RegistrationMagic – Custom Registration Forms, User Registration, Payment, and User Login plugin for WordPress is vulnerable to privilege escalation due to a missing capability check on the update_users_role() function in all versions up to, and including, 5.3.0.0. This makes it possible for authenticated attackers, with subscriber-level access and above, to escalate their privileges to that of an administrator
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Metagauss | Registrationmagic | < 5.3.1.0 |
Related Weaknesses (CWE)
References
- https://plugins.trac.wordpress.org/browser/custom-registration-form-builder-withProduct
- https://plugins.trac.wordpress.org/changeset/3049490/custom-registration-form-buPatch
- https://www.wordfence.com/threat-intel/vulnerabilities/id/766e3966-157a-4db3-917Third Party Advisory
- https://plugins.trac.wordpress.org/browser/custom-registration-form-builder-withProduct
- https://plugins.trac.wordpress.org/changeset/3049490/custom-registration-form-buPatch
- https://www.wordfence.com/threat-intel/vulnerabilities/id/766e3966-157a-4db3-917Third Party Advisory
FAQ
What is CVE-2024-1991?
CVE-2024-1991 is a vulnerability with a CVSS score of 8.8 (HIGH). The RegistrationMagic – Custom Registration Forms, User Registration, Payment, and User Login plugin for WordPress is vulnerable to privilege escalation due to a missing capability check on the update...
How severe is CVE-2024-1991?
CVE-2024-1991 has been rated HIGH with a CVSS base score of 8.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2024-1991?
Check the references section above for vendor advisories and patch information. Affected products include: Metagauss Registrationmagic.