CVE-2024-8548

The KB Support  WordPress Help Desk and Knowledge Base plugin for WordPress is vulnerable to unauthorized modification and loss of data due to a missing capability check on several functions in all versions up to, and including, 1.6.6. This makes it possible for authenticated attackers, with Subscriber-level access and above, to perform multiple administrative actions, such as replying to arbitrary tickets, updating the status of any post, deleting any post, adding notes to tickets, flagging or unflagging tickets, and adding or removing ticket participants.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
8.1 HIGH
NETWORK
LOW
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
WordfenceCNA
8.1 HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
CISA-ADPADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 53%
VendorProductVersion
cagdasdagkb_support_wordpress_help_desk_and_knowledge_base
𝑥
≤ 1.6.6
logonkb_support
𝑥
< 1.6.7
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://plugins.trac.wordpress.org/browser/kb-support/trunk/includes/ajax-functions.php#L138
https://plugins.trac.wordpress.org/browser/kb-support/trunk/includes/ajax-functions.php#L172
https://plugins.trac.wordpress.org/browser/kb-support/trunk/includes/ajax-functions.php#L211
https://plugins.trac.wordpress.org/browser/kb-support/trunk/includes/ajax-functions.php#L240
https://plugins.trac.wordpress.org/browser/kb-support/trunk/includes/ajax-functions.php#L458
https://plugins.trac.wordpress.org/browser/kb-support/trunk/includes/ajax-functions.php#L531
https://plugins.trac.wordpress.org/browser/kb-support/trunk/includes/ajax-functions.php#L580
https://plugins.trac.wordpress.org/browser/kb-support/trunk/includes/ajax-functions.php#L605
https://plugins.trac.wordpress.org/browser/kb-support/trunk/includes/ajax-functions.php#L630
https://plugins.trac.wordpress.org/browser/kb-support/trunk/includes/ajax-functions.php#L649
https://plugins.trac.wordpress.org/browser/kb-support/trunk/includes/ajax-functions.php#L801
https://plugins.trac.wordpress.org/browser/kb-support/trunk/includes/ajax-functions.php#L869
https://www.wordfence.com/threat-intel/vulnerabilities/id/5fb90b3b-08bd-4887-a6bf-054b42d3e403?source=cve