SoundRise Music WordPress Plugin Privilege Escalation Vulnerability

A vulnerability in the SoundRise Music plugin for WordPress, present in versions through 1.6.11, allows for unauthorized data modification that could lead to privilege escalation. This issue arises from a missing capability check in the theironMusic_ajax() function, enabling authenticated attackers with subscriber-level access or higher to update arbitrary options on the WordPress site. Exploitation of this vulnerability could involve changing the default registration role to administrator and activating user registration, thereby granting administrative access to the attacker on the compromised site.

Impact

Exploitation of this vulnerability could allow an authenticated attacker to gain administrative privileges on the WordPress site, potentially leading to further exploitation or damage.

Remediation

Users are advised to update the SoundRise Music WordPress plugin to version 1.7.1 or a newer patched version.