CVE-2024-0881
Published: 11 April 2024
Summary
CVE-2024-0881 is a medium-severity an unspecified weakness vulnerability in Pickplugins Post Grid. Its CVSS base score is 5.4 (Medium).
Operationally, ranked in the top 5.7% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.
Deeper analysis
The Post Grid, Form Maker, Popup Maker, WooCommerce Blocks, Post Blocks, Post Carousel WordPress plugin before version 2.2.76 contains an authorization flaw that exposes password-protected posts through unauthenticated AJAX endpoints. The affected component fails to enforce access controls on certain queries, allowing restricted post content to appear in responses that should be limited to authenticated users with the correct password.
Unauthenticated attackers can invoke the vulnerable AJAX actions to retrieve the full content of password-protected posts. This grants them read access to material that should remain hidden, with the CVSS 5.4 rating reflecting network-exploitable confidentiality and integrity impact without requiring user interaction.
Public references from WPScan document the missing authorization checks and identify the fixed release as 2.2.76. The EPSS score has remained flat at 0.1307 with no observed rise after disclosure.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2024-16663
Vulnerability details
The Post Grid, Form Maker, Popup Maker, WooCommerce Blocks, Post Blocks, Post Carousel WordPress plugin before 2.2.76 does not have proper authorization, resulting in password protected posts to be displayed in the result of some unauthenticated AJAX actions, allowing unauthenticated…
more
users to read such posts
- CWE(s)
Related Threats
No named actor attribution yet. ATT&CK technique mapping in progress for this CVE.
Affected Assets
Mitigating Controls
No mitigating controls mapped yet. The per-CVE control annotator has not reached this CVE.