CVE-2015-5623
MEDIUM severity · CVSS 4 · Improper access control
4CVSS MEDIUM
Summary
WordPress before 4.2.3 does not properly verify the edit_posts capability, which allows remote authenticated users to bypass intended access restrictions and create drafts by leveraging the Subscriber role, as demonstrated by a post-quickdraft-save action to wp-admin/post.php.
Impact & exploitability
Attack vectorNetwork
Attack complexityLow
Privileges required—
User interaction—
Confidentiality impactNone
Integrity impact—
Availability impactNone
Exploit probability (EPSS)48%
AV:N/AC:L/Au:S/C:N/I:P/A:N
Recommendation
Apply the vendor fix in your normal patch cycle. Open any affected product above for its exact safe version.
Official patch: http://codex.wordpress.org/Version_4.2.3 ↗
Additional information
- NVD record
- http://codex.wordpress.org/Version_4.2.3Patch
- https://wordpress.org/news/2015/07/wordpress-4-2-3/Patch
- http://openwall.com/lists/oss-security/2015/07/23/18
- http://www.debian.org/security/2015/dsa-3328
- http://www.securityfocus.com/bid/76011
- http://www.securitytracker.com/id/1033037
- https://core.trac.wordpress.org/changeset/33357
- https://wpvulndb.com/vulnerabilities/8111