Primary

Context

WordPress Browse As Plugin Authentication Bypass Vulnerability

Vulnerability

An authentication bypass vulnerability has been identified in the Browse As plugin for WordPress, affecting versions through 0.2. The issue arises from improper authentication validation in the 'IS_BA_Browse_As::notice' function, specifically regarding the 'is_ba_original_user_COOKIEHASH' cookie. This flaw allows authenticated attackers with subscriber-level permissions or higher to log in as any existing user on the site, including administrators, provided they know the user's ID.

Impact

Exploitation of this vulnerability allows for authentication bypass, enabling attackers to impersonate other users, such as administrators.

Remediation

No known patch is available. Users are advised to review the vulnerability details and consider uninstalling the affected plugin.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.0

exploitability

5.9

remediation

0.0

relevance

0.1

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.0

exploitability

5.9

remediation

0.0

relevance

0.1

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

WordPress Browse As Plugin Authentication Bypass Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating