CVSS base score
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N
What the vulnerability does
The Simple Downloads List plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'wp_ajax_neofix_sdl_edit' AJAX endpoint along with many others in all versions up to, and including, 1.4.3. This makes it possible for authenticated attackers, with Subscriber-level access and above, to alter many of the plugin's settings/downloads and inject malicious web scripts.
Explanation of Vulnerability in Simple Terms
Simple Downloads List versions 1.4.3 and earlier lack proper authorization checks, allowing authenticated users to read and modify data they should not have access to. The vulnerability affects multiple data types within the plugin and can impact other users' information. A low-privilege account is required to exploit this issue.
What an attacker can do
Read and modify other users' data without authorization.
Potential impact on your site
Authenticated users can access and alter sensitive data belonging to other users or the site.
Conditions required to exploit
Attacker must have a low-privilege user account on the site.
Key dates
External resources
Related vulnerabilities
