wModes Catalog Mode, Product Pricing, Enquiry Forms & Promotions WordPress Plugin Authorization Bypass Vulnerability

A vulnerability allowing authorization bypass has been identified in the wModes - Catalog Mode, Product Pricing, Enquiry Forms & Promotions plugin for WordPress, affecting versions through 1.2.2. The vulnerability arises because the plugin fails to properly verify user authorization for accessing sensitive information via an AJAX endpoint. This flaw enables authenticated attackers with subscriber-level access or higher to extract confidential data, including user emails, usernames, roles, capabilities, and WooCommerce information such as products and payment methods.

Impact

Exploitation of this vulnerability could lead to unauthorized access to sensitive user information and WooCommerce data, including product details and payment methods.

Reproduction

To reproduce this vulnerability, an authenticated user with subscriber-level access or above can send a request to the vulnerable AJAX endpoint without the necessary authorization. The absence of proper authorization checks allows the extraction of sensitive information, such as user emails, usernames, roles, capabilities, and WooCommerce data like products and payment methods.

Remediation

Users are advised to update the plugin to version 1.3 or a newer patched version.