CVE-2022-3400 - OpenCVE

The Bricks theme for WordPress is vulnerable to authorization bypass due to a missing capability check on the bricks_save_post AJAX action in versions 1.0 to 1.5.3. This makes it possible for authenticated attackers with minimal permissions, such as a subscriber, to edit any page, post, or template on the vulnerable WordPress website.

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact None

Integrity Impact High

Availability Impact None

User Interaction None

No CVSS v3.0

No CVSS v2

Vendors & Products
CPE Configurations

Vendors	Products
Bricksbuilder	Bricks

Configuration 1 [-]

cpe:2.3:a:bricksbuilder:bricks:*:*:*:*:*:wordpress:*:*

References

Link	Resource
https://bricksbuilder.io/	Product
https://www.wordfence.com/vulnerability-advisories-continued/#CVE-2022-3400	Third Party Advisory

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: Wordfence

Published: 2022-10-28T16:57:41.482Z

Updated: 2022-10-28T19:27:04.638Z

Reserved: 2022-10-03T15:19:55.252Z

Link: CVE-2022-3400

JSON object: View

NVD Information

Status : Modified

Published: 2022-10-28T17:15:26.640

Modified: 2023-11-07T03:51:12.583

Link: CVE-2022-3400

JSON object: View

Redhat Information

No data.

CWE

CWE-862

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:bricksbuilder:bricks:*:*:*:*:*:wordpress:*:*", "matchCriteriaId": "30FD144B-5562-4C8D-A23D-D0229825F90B", "versionEndIncluding": "1.5.3", "versionStartIncluding": "1.0", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "The Bricks theme for WordPress is vulnerable to authorization bypass due to a missing capability check on the bricks_save_post AJAX action in versions 1.0 to 1.5.3. This makes it possible for authenticated attackers with minimal permissions, such as a subscriber, to edit any page, post, or template on the vulnerable WordPress website."}, {"lang": "es", "value": "El tema Bricks para WordPress es vulnerable a la omisi\u00f3n de autorizaci\u00f3n debido a una falta de verificaci\u00f3n de capacidad en la acci\u00f3n AJAX bricks_save_post en las versiones 1.0 a 1.5.3. Esto hace posible que atacantes autenticados con permisos m\u00ednimos, como un suscriptor, editen cualquier p\u00e1gina, publicaci\u00f3n o plantilla en el sitio web vulnerable de WordPress."}], "id": "CVE-2022-3400", "lastModified": "2023-11-07T03:51:12.583", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 6.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 6.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 3.6, "source": "security@wordfence.com", "type": "Secondary"}]}, "published": "2022-10-28T17:15:26.640", "references": [{"source": "security@wordfence.com", "tags": ["Product"], "url": "https://bricksbuilder.io/"}, {"source": "security@wordfence.com", "tags": ["Third Party Advisory"], "url": "https://www.wordfence.com/vulnerability-advisories-continued/#CVE-2022-3400"}], "sourceIdentifier": "security@wordfence.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-862"}], "source": "nvd@nist.gov", "type": "Primary"}]}