Integração entre Eduzz e Woocommerce Missing Authorization Privilege Escalation Vulnerability

A vulnerability exists in the Integração entre Eduzz e Woocommerce WordPress plugin, in versions through 1.7.5. The issue arises from a lack of proper capability checks in the 'wep_opcoes' function, allowing authenticated attackers with Subscriber-level access or higher to unauthorizedly modify data. Specifically, these attackers can change the default registration role assigned during the plugin's registration process to Administrator. This alteration enables any user to create an Administrator account.

Impact

Exploitation of this vulnerability allows for unauthorized privilege escalation, enabling users to gain Administrator rights and potentially misuse them to create additional Administrator accounts.

Reproduction

To reproduce this vulnerability, an authenticated user with Subscriber-level access or higher can send a request to the 'wep_opcoes' function without the necessary capability checks. This can be done by manipulating the registration flow within the plugin to assign themselves or others an Administrator role.