Vulnerabilites related to siteground - siteground_security
Vulnerability from fkie_nvd
Published
2022-04-19 21:15
Modified
2024-11-21 06:39
Severity ?
8.1 (High) - CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
9.8 (Critical) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
9.8 (Critical) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Summary
The SiteGround Security plugin for WordPress is vulnerable to authentication bypass that allows unauthenticated users to log in as administrative users due to missing identity verification on the 2FA back-up code implementation that logs users in upon success. This affects versions up to, and including, 1.2.5.
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| siteground | siteground_security | * |
{ configurations: [ { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:a:siteground:siteground_security:*:*:*:*:*:wordpress:*:*", matchCriteriaId: "E3218CA5-B148-4D5D-B7F2-6DD790463954", versionEndIncluding: "1.2.5", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, ], cveTags: [], descriptions: [ { lang: "en", value: "The SiteGround Security plugin for WordPress is vulnerable to authentication bypass that allows unauthenticated users to log in as administrative users due to missing identity verification on the 2FA back-up code implementation that logs users in upon success. This affects versions up to, and including, 1.2.5.", }, { lang: "es", value: "El plugin de seguridad de SiteGround para WordPress es vulnerable a una omisión de autenticación que permite a usuarios no autenticados iniciar sesión como usuarios administrativos debido a una falta de verificación de identidad en la implementación del código de respaldo 2FA que inicia la sesión de los usuarios en caso de éxito. Esto afecta a las versiones hasta la 1.2.5 incluyéndola", }, ], id: "CVE-2022-0993", lastModified: "2024-11-21T06:39:48.980", metrics: { cvssMetricV2: [ { acInsufInfo: false, baseSeverity: "HIGH", cvssData: { accessComplexity: "LOW", accessVector: "NETWORK", authentication: "NONE", availabilityImpact: "PARTIAL", baseScore: 7.5, confidentialityImpact: "PARTIAL", integrityImpact: "PARTIAL", vectorString: "AV:N/AC:L/Au:N/C:P/I:P/A:P", version: "2.0", }, exploitabilityScore: 10, impactScore: 6.4, obtainAllPrivilege: false, obtainOtherPrivilege: false, obtainUserPrivilege: false, source: "nvd@nist.gov", type: "Primary", userInteractionRequired: false, }, ], cvssMetricV31: [ { cvssData: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, exploitabilityScore: 2.2, impactScore: 5.9, source: "security@wordfence.com", type: "Secondary", }, { cvssData: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.8, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, exploitabilityScore: 3.9, impactScore: 5.9, source: "nvd@nist.gov", type: "Primary", }, ], }, published: "2022-04-19T21:15:13.683", references: [ { source: "security@wordfence.com", tags: [ "Release Notes", "Vendor Advisory", ], url: "https://plugins.trac.wordpress.org/changeset/2706302", }, { source: "security@wordfence.com", url: "https://www.wordfence.com/blog/2022/04/critical-authentication-bypass-vulnerability-patched-in-siteground-security-plugin/", }, { source: "security@wordfence.com", url: "https://www.wordfence.com/threat-intel/vulnerabilities/id/8e3a5566-eee5-4f71-9c93-e59abf913d04?source=cve", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Release Notes", "Vendor Advisory", ], url: "https://plugins.trac.wordpress.org/changeset/2706302", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "https://www.wordfence.com/blog/2022/04/critical-authentication-bypass-vulnerability-patched-in-siteground-security-plugin/", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "https://www.wordfence.com/threat-intel/vulnerabilities/id/8e3a5566-eee5-4f71-9c93-e59abf913d04?source=cve", }, ], sourceIdentifier: "security@wordfence.com", vulnStatus: "Modified", weaknesses: [ { description: [ { lang: "en", value: "CWE-306", }, ], source: "nvd@nist.gov", type: "Primary", }, ], }
Vulnerability from fkie_nvd
Published
2023-02-06 20:15
Modified
2025-03-25 19:15
Severity ?
8.8 (High) - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
8.8 (High) - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
8.8 (High) - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
The SiteGround Security WordPress plugin before 1.3.1 does not properly sanitize user input before using it in an SQL query, leading to an authenticated SQL injection issue.
References
| ▼ | URL | Tags | |
|---|---|---|---|
| contact@wpscan.com | https://github.com/namah-age/CVEs/blob/master/1.md | Third Party Advisory | |
| contact@wpscan.com | https://wpscan.com/vulnerability/acf3e369-1290-4b3f-83bf-2209b9dd06e1 | Exploit, Third Party Advisory | |
| contact@wpscan.com | https://www.siteground.com/viewtos/responsible_disclosure_policy?scid=4&lang=en | Issue Tracking | |
| af854a3a-2127-422b-91ae-364da2661108 | https://github.com/namah-age/CVEs/blob/master/1.md | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://wpscan.com/vulnerability/acf3e369-1290-4b3f-83bf-2209b9dd06e1 | Exploit, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://www.siteground.com/viewtos/responsible_disclosure_policy?scid=4&lang=en | Issue Tracking |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| siteground | siteground_security | * |
{ configurations: [ { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:a:siteground:siteground_security:*:*:*:*:*:wordpress:*:*", matchCriteriaId: "327E707C-75F2-4F3A-A148-7D8BC9E19A3D", versionEndExcluding: "1.3.1", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, ], cveTags: [], descriptions: [ { lang: "en", value: "The SiteGround Security WordPress plugin before 1.3.1 does not properly sanitize user input before using it in an SQL query, leading to an authenticated SQL injection issue.", }, ], id: "CVE-2023-0234", lastModified: "2025-03-25T19:15:40.797", metrics: { cvssMetricV31: [ { cvssData: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.8, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, exploitabilityScore: 2.8, impactScore: 5.9, source: "nvd@nist.gov", type: "Primary", }, { cvssData: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.8, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, exploitabilityScore: 2.8, impactScore: 5.9, source: "134c704f-9b21-4f2e-91b3-4a467353bcc0", type: "Secondary", }, ], }, published: "2023-02-06T20:15:14.053", references: [ { source: "contact@wpscan.com", tags: [ "Third Party Advisory", ], url: "https://github.com/namah-age/CVEs/blob/master/1.md", }, { source: "contact@wpscan.com", tags: [ "Exploit", "Third Party Advisory", ], url: "https://wpscan.com/vulnerability/acf3e369-1290-4b3f-83bf-2209b9dd06e1", }, { source: "contact@wpscan.com", tags: [ "Issue Tracking", ], url: "https://www.siteground.com/viewtos/responsible_disclosure_policy?scid=4&lang=en", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Third Party Advisory", ], url: "https://github.com/namah-age/CVEs/blob/master/1.md", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Exploit", "Third Party Advisory", ], url: "https://wpscan.com/vulnerability/acf3e369-1290-4b3f-83bf-2209b9dd06e1", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Issue Tracking", ], url: "https://www.siteground.com/viewtos/responsible_disclosure_policy?scid=4&lang=en", }, ], sourceIdentifier: "contact@wpscan.com", vulnStatus: "Modified", }
cve-2022-0993
Vulnerability from cvelistv5
Published
2022-04-19 20:26
Modified
2024-10-15 15:25
Severity ?
EPSS score ?
Summary
The SiteGround Security plugin for WordPress is vulnerable to authentication bypass that allows unauthenticated users to log in as administrative users due to missing identity verification on the 2FA back-up code implementation that logs users in upon success. This affects versions up to, and including, 1.2.5.
References
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| siteground | Security Optimizer – The All-In-One WordPress Protection Plugin |
Version: * ≤ 1.2.5 |
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-02T23:47:43.246Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_transferred", ], url: "https://www.wordfence.com/threat-intel/vulnerabilities/id/8e3a5566-eee5-4f71-9c93-e59abf913d04?source=cve", }, { tags: [ "x_transferred", ], url: "https://www.wordfence.com/blog/2022/04/critical-authentication-bypass-vulnerability-patched-in-siteground-security-plugin/", }, { tags: [ "x_transferred", ], url: "https://plugins.trac.wordpress.org/changeset/2706302", }, ], title: "CVE Program Container", }, { metrics: [ { other: { content: { id: "CVE-2022-0993", options: [ { Exploitation: "poc", }, { Automatable: "no", }, { "Technical Impact": "total", }, ], role: "CISA Coordinator", timestamp: "2024-10-15T15:24:53.793488Z", version: "2.0.3", }, type: "ssvc", }, }, ], providerMetadata: { dateUpdated: "2024-10-15T15:25:06.942Z", orgId: "134c704f-9b21-4f2e-91b3-4a467353bcc0", shortName: "CISA-ADP", }, title: "CISA ADP Vulnrichment", }, ], cna: { affected: [ { defaultStatus: "unaffected", product: "Security Optimizer – The All-In-One WordPress Protection Plugin", vendor: "siteground", versions: [ { lessThanOrEqual: "1.2.5", status: "affected", version: "*", versionType: "semver", }, ], }, ], credits: [ { lang: "en", type: "finder", value: "Chloe Chamberland", }, ], descriptions: [ { lang: "en", value: "The SiteGround Security plugin for WordPress is vulnerable to authentication bypass that allows unauthenticated users to log in as administrative users due to missing identity verification on the 2FA back-up code implementation that logs users in upon success. This affects versions up to, and including, 1.2.5.", }, ], metrics: [ { cvssV3_1: { baseScore: 8.1, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, }, ], problemTypes: [ { descriptions: [ { description: "CWE-285 Improper Authorization", lang: "en", }, ], }, ], providerMetadata: { dateUpdated: "2024-01-11T08:32:46.428Z", orgId: "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", shortName: "Wordfence", }, references: [ { url: "https://www.wordfence.com/threat-intel/vulnerabilities/id/8e3a5566-eee5-4f71-9c93-e59abf913d04?source=cve", }, { url: "https://www.wordfence.com/blog/2022/04/critical-authentication-bypass-vulnerability-patched-in-siteground-security-plugin/", }, { url: "https://plugins.trac.wordpress.org/changeset/2706302", }, ], timeline: [ { lang: "en", time: "2022-04-07T00:00:00.000+00:00", value: "Disclosed", }, ], }, }, cveMetadata: { assignerOrgId: "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", assignerShortName: "Wordfence", cveId: "CVE-2022-0993", datePublished: "2022-04-19T20:26:36", dateReserved: "2022-03-16T00:00:00", dateUpdated: "2024-10-15T15:25:06.942Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2023-0234
Vulnerability from cvelistv5
Published
2023-02-06 19:59
Modified
2025-03-25 18:09
Severity ?
EPSS score ?
Summary
The SiteGround Security WordPress plugin before 1.3.1 does not properly sanitize user input before using it in an SQL query, leading to an authenticated SQL injection issue.
References
| ▼ | URL | Tags |
|---|---|---|
| https://wpscan.com/vulnerability/acf3e369-1290-4b3f-83bf-2209b9dd06e1 | exploit, vdb-entry, technical-description | |
| https://github.com/namah-age/CVEs/blob/master/1.md | ||
| https://www.siteground.com/viewtos/responsible_disclosure_policy?scid=4&lang=en |
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Unknown | SiteGround Security |
Version: 0 < 1.3.1 |
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-02T05:02:44.113Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "exploit", "vdb-entry", "technical-description", "x_transferred", ], url: "https://wpscan.com/vulnerability/acf3e369-1290-4b3f-83bf-2209b9dd06e1", }, { tags: [ "x_transferred", ], url: "https://github.com/namah-age/CVEs/blob/master/1.md", }, { tags: [ "x_transferred", ], url: "https://www.siteground.com/viewtos/responsible_disclosure_policy?scid=4&lang=en", }, ], title: "CVE Program Container", }, { metrics: [ { cvssV3_1: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.8, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, }, { other: { content: { id: "CVE-2023-0234", options: [ { Exploitation: "poc", }, { Automatable: "no", }, { "Technical Impact": "total", }, ], role: "CISA Coordinator", timestamp: "2025-03-25T18:09:23.123313Z", version: "2.0.3", }, type: "ssvc", }, }, ], providerMetadata: { dateUpdated: "2025-03-25T18:09:53.520Z", orgId: "134c704f-9b21-4f2e-91b3-4a467353bcc0", shortName: "CISA-ADP", }, title: "CISA ADP Vulnrichment", }, ], cna: { affected: [ { collectionURL: "https://wordpress.org/plugins", defaultStatus: "unaffected", product: "SiteGround Security", vendor: "Unknown", versions: [ { lessThan: "1.3.1", status: "affected", version: "0", versionType: "custom", }, ], }, ], credits: [ { lang: "en", type: "finder", value: "So Sakaguchi", }, { lang: "en", type: "coordinator", value: "WPScan", }, ], descriptions: [ { lang: "en", value: "The SiteGround Security WordPress plugin before 1.3.1 does not properly sanitize user input before using it in an SQL query, leading to an authenticated SQL injection issue.", }, ], problemTypes: [ { descriptions: [ { description: "CWE-89 SQL Injection", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2023-02-06T19:59:32.911Z", orgId: "1bfdd5d7-9bf6-4a53-96ea-42e2716d7a81", shortName: "WPScan", }, references: [ { tags: [ "exploit", "vdb-entry", "technical-description", ], url: "https://wpscan.com/vulnerability/acf3e369-1290-4b3f-83bf-2209b9dd06e1", }, { url: "https://github.com/namah-age/CVEs/blob/master/1.md", }, { url: "https://www.siteground.com/viewtos/responsible_disclosure_policy?scid=4&lang=en", }, ], source: { discovery: "EXTERNAL", }, title: "SiteGround Security < 1.3.1 - Admin+ SQLi", x_generator: { engine: "WPScan CVE Generator", }, }, }, cveMetadata: { assignerOrgId: "1bfdd5d7-9bf6-4a53-96ea-42e2716d7a81", assignerShortName: "WPScan", cveId: "CVE-2023-0234", datePublished: "2023-02-06T19:59:32.911Z", dateReserved: "2023-01-12T11:39:38.857Z", dateUpdated: "2025-03-25T18:09:53.520Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }