CVSS base score
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
What the vulnerability does
The Ultimate Classified Listings plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the save_custom_fields function in all versions up to, and including, 1.7. This makes it possible for authenticated attackers, with Subscriber-level access and above, to change plugin custom fields.
Explanation of Vulnerability in Simple Terms
Ultimate Classified Listings versions 1.7 and earlier contain an authorization bypass that allows authenticated users to modify data they should not have access to. An attacker with a low-privilege account can change listings or other content without proper permission checks. The vulnerability requires login credentials but does not require user interaction beyond normal site usage.
What an attacker can do
Modify or change listings and content belonging to other users or restricted areas.
Potential impact on your site
Users' listings and content can be altered by other authenticated users without authorization.
Conditions required to exploit
Attacker must have a valid low-privilege user account on the site.
Key dates
External resources
Related vulnerabilities
