Incorrect Privilege Assignment vulnerability in VibeThemes WPLMS wplms_plugin allows Privilege Escalation.This issue affects WPLMS: from n/a through <= 1.9.9.
The vulnerability results from an error in the permissions assignment mechanism (CWE-266) in the WPLMS plugin. An attacker without any authentication (PR:N, UI:N) can exploit the flaw over the network (AV:N) and obtain a higher privilege level than entitled. Low attack complexity (AC:L) means the exploit does not require any special conditions to be met on the victim's side or infrastructure.
An unauthenticated attacker can obtain elevated privileges within the WordPress site, which in practice can lead to complete takeover of the service, including reading, modifying, and deleting data.
The WPLMS plugin should be immediately updated to a version higher than 1.9.9. Detailed information about the available patch is available in the Patchstack database and from the vendor. Until the update is applied, it is recommended to consider disabling the plugin on affected installations.
VibeThemes WPLMS plugin (wplms_plugin) for WordPress in versions from the beginning through 1.9.9 inclusive.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HVibethemes WordPress Learning Management System
APPVibethemes< 1.9.9.1
Related vulnerabilities
Niekontrolowane przesyłanie plików w pluginie WPLMS — upload Web Shell
SQL Injection w pluginie WPLMS dla WordPress (VibeThemes)
Authentication Bypass w pluginie WPLMS dla WordPress (do wersji 1.9.9)
Path Traversal w WPLMS — nieautoryzowane usuwanie katalogów
Nieograniczony upload plików w WPLMS — możliwość wgrania Web Shell