We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Crisp.chat (Helpdesk and Chat)

Ok

THREATINT
PUBLISHED

CVE-2024-8350

Uncanny Groups for LearnDash <= 6.1.0.1 - Missing Authorization to Authenticated (Group Leader+) User Group Add



Description

The Uncanny Groups for LearnDash plugin for WordPress is vulnerable to user group add due to a missing capability check on the /wp-json/ulgm_management/v1/add_user/ REST API endpoint in all versions up to, and including, 6.1.0.1. This makes it possible for authenticated attackers, with group leader-level access and above, to add users to their group which ultimately allows them to leverage CVE-2024-8349 and gain admin access to the site.

Reserved 2024-08-30 | Published 2024-09-25 | Updated 2024-09-25 | Assigner Wordfence


LOW: 2.7CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N

Problem types

CWE-862 Missing Authorization

Product status

Default status
unaffected

*
affected

Timeline

2024-08-15:Vendor Notified
2024-09-24:Disclosed

Credits

Karl Emil Nikka finder

References

www.wordfence.com/...-5f7d-4033-9a65-41b590b7d510?source=cve

github.com/karlemilnikka/CVE-2024-8349-and-CVE-2024-8350

cve.org (CVE-2024-8350)

nvd.nist.gov (CVE-2024-8350)

Download JSON

Share this page
https://cve.threatint.com/CVE/CVE-2024-8350

Support options

Helpdesk Chat, Email, Knowledgebase
Telegram Chat
Subscribe to our newsletter to learn more about our work.