Opal Estate Pro WordPress Plugin Privilege Escalation Vulnerability
Vulnerability
A privilege escalation vulnerability has been identified in the Opal Estate Pro – Property Management and Submission plugin for WordPress, specifically in versions through 1.7.5. The vulnerability arises from the 'on_regiser_user' function, which lacks proper role restrictions during user registration. This flaw allows unauthenticated attackers to arbitrarily assign roles, including the Administrator role, to users upon registration.
Impact
Exploitation of this vulnerability allows for unauthorized users to gain elevated privileges by assigning themselves roles with higher access rights, such as Administrator.
Reproduction
To reproduce this vulnerability, an unauthenticated user can send a registration request that includes a specified role. The 'on_regiser_user' function will process the request and assign the chosen role to the new user, bypassing any necessary role restrictions.
Remediation
No known patch is available. It is recommended to uninstall the affected plugin and consider a replacement.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.