CVE-2024-9195

Published: Feb 28, 2025Modified: Mar 11, 2025

8.8

Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploitability: 2.8 / Impact: 5.9

Source: security@wordfence.com (Secondary)

Description

The WHMPress - WHMCS Client Area plugin for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to a missing capability check on the update_settings case in the /admin/ajax.php file in all versions up to, and including, 4.3-revision-3. This makes it possible for authenticated attackers, with Subscriber-level access and above, to update arbitrary options on the WordPress site. This can be leveraged to update the default role for registration to administrator and enable user registration for attackers to gain administrative user access to a vulnerable site.

Affected (4)

Products: Whmpress: Whmcs Client Area

Whmpress

1 product

Whmcs Client Area

Configuration A

4 vulnerable

Vulnerable Software	Affected Versions
Whmpress Whmcs Client Area	Before 4.3
Whmpress Whmcs Client Area	Version 4.3 rev1
Whmpress Whmcs Client Area	Version 4.3 rev2
Whmpress Whmcs Client Area	Version 4.3 rev3

Related CWEs

CWE-862

Missing Authorization

The product does not perform an authorization check when an actor attempts to access a resource or perform an action.

References (2)

https://codecanyon.net/item/whmcs-client-area-whmpress-addon/11218646

Source: security@wordfence.com

Product

https://www.wordfence.com/threat-intel/vulnerabilities/id/c8af0c5c-3d7b-416d-9d10-6867fcf909a5?source=cve

Source: security@wordfence.com

Third Party Advisory

Timeline

No history available yet.