Zigaform WordPress Plugin Sensitive Information Exposure Vulnerability
Vulnerability
A vulnerability allowing sensitive information exposure has been identified in the Zigaform WordPress plugin, specifically in versions through 7.6.5. The issue arises from a public AJAX endpoint that retrieves form submission data without proper authorization checks. This flaw enables unauthenticated attackers to access sensitive information such as personal details, payment information, and other private data by exploiting the 'rocket_front_payment_seesummary' action and sequentially enumerating 'form_r_id' values.
Impact
Exploitation of this vulnerability allows for unauthorized access to sensitive form submission data, including personal information and payment details.
Reproduction
The vulnerability can be reproduced by sending a request to the 'rocket_front_payment_seesummary' AJAX endpoint without authentication. This can be done by enumerating 'form_r_id' values to extract sensitive data from the server.
Remediation
Users are advised to update the Zigaform WordPress plugin to version 7.6.7 or later.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.