CRITICAL🇵🇱 Wersja polska

CVE-2024-11350

CVSS 9.8v3.1pub. 2025-01-08upd. 2025-08-12

The AdForest theme for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 5.1.6. This is due to the plugin not properly validating a user's identity prior to updating their password through the adforest_reset_password() function. This makes it possible for unauthenticated attackers to change arbitrary user's passwords, including administrators, and leverage that to gain access to their account.

🤖 AI Analysis
How it works

The vulnerability results from the lack of proper user identity verification in the adforest_reset_password() function before updating their password. An attacker without any authentication can call this function and set a new password for a selected account, including the administrator account. After changing the password, the attacker logs in to the compromised account, gaining full access to its privileges (CWE-640: weak password recovery mechanism).

Impact

An attacker can gain full control over any WordPress account — including the administrator account — which allows for content modification, installation of malicious plugins, data leakage, and compromise of the entire website.

Mitigation & patch

The AdForest theme should be updated to a version higher than 5.1.6. Patches available from the vendor should be applied according to references. Until updating, it is recommended to monitor authentication logs for suspicious password changes.

Who is affected

The AdForest theme (Scriptsbundle) for WordPress in all versions up to and including 5.1.6

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Scriptsbundle Adforest

    APP
    Scriptsbundle
    < 5.1.7
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
Auth BypassLPE
CWE
References

Related vulnerabilities

CVE-2024-12857CRITICAL9.8PL ✓ten sam produkt

AdForest WordPress Theme — Authentication Bypass przez OTP (do v5.1.8)

CVE-2024-11349CRITICAL9.8PL ✓ten sam produkt

Podatność authentication bypass w motywie AdForest dla WordPress (≤ 5.1.6)

CVE-2024-12855MEDIUM4.3ten sam produkt

The AdForest theme for WordPress is vulnerable to unauthorized modification of data due to a missing capabilit...

CVE-2025-0169MEDIUM6.4ten sam vendor

The DWT - Directory & Listing WordPress Theme is vulnerable to Stored Cross-Site Scripting via shortcodes in v...

CVE-2019-15870MEDIUM5.4ten sam vendor

The CarSpot theme before 2.1.7 for WordPress has stored XSS via the Phone Number field.