GSD-2022-0775

Vulnerability from gsd - Updated: 2023-12-13 01:19
Details
The WooCommerce WordPress plugin before 6.2.1 does not have proper authorisation check when deleting reviews, which could allow any authenticated users, such as subscriber to delete arbitrary comment
Aliases
Aliases
CVE-2022-0775
To clipboard 

{
  "GSD": {
    "alias": "CVE-2022-0775",
    "id": "GSD-2022-0775"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2022-0775"
      ],
      "details": "The WooCommerce WordPress plugin before 6.2.1 does not have proper authorisation check when deleting reviews, which could allow any authenticated users, such as subscriber to delete arbitrary comment",
      "id": "GSD-2022-0775",
      "modified": "2023-12-13T01:19:11.673467Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "contact@wpscan.com",
        "ID": "CVE-2022-0775",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "WooCommerce",
                    "version": {
                      "version_data": [
                        {
                          "version_affected": "\u003c",
                          "version_name": "0",
                          "version_value": "6.2.1"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "Unknown"
            }
          ]
        }
      },
      "credits": [
        {
          "lang": "en",
          "value": "Krzysztof Zaj\u0105c"
        },
        {
          "lang": "en",
          "value": "WPScan"
        }
      ],
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "The WooCommerce WordPress plugin before 6.2.1 does not have proper authorisation check when deleting reviews, which could allow any authenticated users, such as subscriber to delete arbitrary comment"
          }
        ]
      },
      "generator": {
        "engine": "WPScan CVE Generator"
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "CWE-863 Incorrect Authorization"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "https://wpscan.com/vulnerability/b76dbf37-a0a2-48cf-bd85-3ebbc2f394dd/",
            "refsource": "MISC",
            "url": "https://wpscan.com/vulnerability/b76dbf37-a0a2-48cf-bd85-3ebbc2f394dd/"
          },
          {
            "name": "https://plugins.trac.wordpress.org/changeset/2683324",
            "refsource": "MISC",
            "url": "https://plugins.trac.wordpress.org/changeset/2683324"
          },
          {
            "name": "https://developer.woocommerce.com/2022/02/22/woocommerce-6-2-1-security-fix/",
            "refsource": "MISC",
            "url": "https://developer.woocommerce.com/2022/02/22/woocommerce-6-2-1-security-fix/"
          }
        ]
      },
      "source": {
        "discovery": "EXTERNAL"
      }
    },
    "nvd.nist.gov": {
      "cve": {
        "configurations": [
          {
            "nodes": [
              {
                "cpeMatch": [
                  {
                    "criteria": "cpe:2.3:a:woocommerce:woocommerce:*:*:*:*:*:wordpress:*:*",
                    "matchCriteriaId": "5C44EEBD-672F-4883-A924-E2F61A93E2D1",
                    "versionEndExcluding": "6.2.1",
                    "vulnerable": true
                  }
                ],
                "negate": false,
                "operator": "OR"
              }
            ]
          }
        ],
        "descriptions": [
          {
            "lang": "en",
            "value": "The WooCommerce WordPress plugin before 6.2.1 does not have proper authorisation check when deleting reviews, which could allow any authenticated users, such as subscriber to delete arbitrary comment"
          },
          {
            "lang": "es",
            "value": "El complemento WooCommerce WordPress anterior a 6.2.1 no tiene una verificaci\u00f3n de autorizaci\u00f3n adecuada al eliminar rese\u00f1as, lo que podr\u00eda permitir a cualquier usuario autenticado, como un suscriptor, eliminar comentarios arbitrarios."
          }
        ],
        "id": "CVE-2022-0775",
        "lastModified": "2024-01-19T18:54:15.267",
        "metrics": {
          "cvssMetricV31": [
            {
              "cvssData": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 4.3,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "integrityImpact": "LOW",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N",
                "version": "3.1"
              },
              "exploitabilityScore": 2.8,
              "impactScore": 1.4,
              "source": "nvd@nist.gov",
              "type": "Primary"
            }
          ]
        },
        "published": "2024-01-16T16:15:09.367",
        "references": [
          {
            "source": "contact@wpscan.com",
            "tags": [
              "Release Notes"
            ],
            "url": "https://developer.woocommerce.com/2022/02/22/woocommerce-6-2-1-security-fix/"
          },
          {
            "source": "contact@wpscan.com",
            "tags": [
              "Patch"
            ],
            "url": "https://plugins.trac.wordpress.org/changeset/2683324"
          },
          {
            "source": "contact@wpscan.com",
            "tags": [
              "Exploit",
              "Third Party Advisory"
            ],
            "url": "https://wpscan.com/vulnerability/b76dbf37-a0a2-48cf-bd85-3ebbc2f394dd/"
          }
        ],
        "sourceIdentifier": "contact@wpscan.com",
        "vulnStatus": "Analyzed",
        "weaknesses": [
          {
            "description": [
              {
                "lang": "en",
                "value": "CWE-863"
              }
            ],
            "source": "nvd@nist.gov",
            "type": "Primary"
          }
        ]
      }
    }
  }
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or observed by the user.
  • Confirmed: The vulnerability has been validated from an analyst's perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
  • Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
  • Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
  • Not confirmed: The user expressed doubt about the validity of the vulnerability.
  • Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.



Detection rules are retrieved from Rulezet.