Description
The Bricks theme for WordPress is vulnerable to authorization bypass due to a missing capability check on the bricks_save_post AJAX action in versions 1.0 to 1.5.3. This makes it possible for authenticated attackers with minimal permissions, such as a subscriber, to edit any page, post, or template on the vulnerable WordPress website.
CVSS breakdown
CVSS 3.1
Availability
None
Integrity
High
Confidentiality
None
Scope
Unchanged
User Interaction
None
Privileges Required
Low
Attack Complexity
Low
Attack Vector
Network
Affected products
- Bricks Builder / Bricks1.0 – 1.5.3