Vulnerability Details : CVE-2022-3477

The tagDiv Composer WordPress plugin before 3.5, required by the Newspaper WordPress theme before 12.1 and Newsmag WordPress theme before 5.2.2, does not properly implement the Facebook login feature, allowing unauthenticated attackers to login as any user by just knowing their email address

Vulnerability category: BypassGain privilege

Published 2022-11-14 15:15:49

Updated 2022-11-16 19:04:17

Source WPScan

View at NVD, CVE.org

Exploit prediction scoring system (EPSS) score for CVE-2022-3477

Probability of exploitation activity in the next 30 days: 0.16%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 51 % EPSS Score History EPSS FAQ

CVSS scores for CVE-2022-3477

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Source
9.8	CRITICAL	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H	3.9	5.9	[email protected]
Attack Vector: Network Attack Complexity: Low Privileges Required: None User Interaction: None Scope: Unchanged Confidentiality: High Integrity: High Availability: High

CWE ids for CVE-2022-3477

CWE-287 Improper Authentication

When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.

Assigned by: [email protected] (Primary)

References for CVE-2022-3477

https://wpscan.com/vulnerability/993a95d2-6fce-48de-ae17-06ce2db829ef

Exploit;Third Party Advisory

Products affected by CVE-2022-3477

Tagdiv Composer Project » Tagdiv Composer » For Wordpress
Versions before (<) 3.5
cpe:2.3:a:tagdiv_composer_project:tagdiv_composer:*:*:*:*:*:wordpress:*:*
Matching versions
Newsmag Project » Newsmag » For Wordpress
Versions before (<) 5.2.2
cpe:2.3:a:newsmag_project:newsmag:*:*:*:*:*:wordpress:*:*
Matching versions
Newspaper Project » Newspaper » For Wordpress
Versions before (<) 12.1
cpe:2.3:a:newspaper_project:newspaper:*:*:*:*:*:wordpress:*:*
Matching versions