Truelysell Core WordPress Plugin Arbitrary User Password Change Vulnerability
Vulnerability
A vulnerability allowing unauthenticated users to change passwords of any user, including administrators, has been identified in the Truelysell Core plugin for WordPress, affecting versions through 1.8.6. This issue arises from the plugin's authorization bypass, which allows users to manipulate access to objects and resources. Exploitation is possible only if the attacker knows the specific page that contains the 'truelysell_edit_staff' shortcode.
Impact
Successful exploitation allows for unauthorized password changes, potentially leading to unauthorized access to user accounts, including those of administrators.
Remediation
No known patch is available. Users are advised to review the vulnerability details and consider uninstalling the affected plugin.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.