Description

An issue was discovered in the Ultimate Member plugin 2.39 for WordPress. It allows unauthorized profile and cover picture modification. It is possible to modify the profile and cover picture of any user once one is connected. One can also modify the profiles and cover pictures of privileged users. To perform such a modification, one first needs to (for example) intercept an upload-picture request and modify the user_id parameter.

Remediation

References

CVE-2019-10271

Related Vulnerabilities

LimeSurvey Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-16173)

WordPress Plugin Hot Files:File Sharing and Download Manager Cross-Site Scripting (1.0.0)

osCommerce Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-5111)

WordPress Plugin SPNbabble Cross-Site Request Forgery (1.4.1)

WordPress Plugin WP Human Resource Management Security Bypass (2.2.14)

Severity

Medium

Classification

CVE-2019-10271 CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

Tags

Missing Update Known Vulnerabilities