Vulnerability Details CVE-2020-13700
An issue was discovered in the acf-to-rest-api plugin through 3.1.0 for WordPress. It allows an insecure direct object reference via permalinks manipulation, as demonstrated by a wp-json/acf/v3/options/ request that reads sensitive information in the wp_options table, such as the login and pass values.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.909
EPSS Ranking 99.6%
CVSS Severity
CVSS v3 Score 7.5
CVSS v2 Score 5.0
References
- https://gist.github.com/mariuszpoplwski/4fbaab7f271bea99c733e3f2a4bafbb5
- https://github.com/airesvsg/acf-to-rest-api
- https://wordpress.org/plugins/acf-to-rest-api/#developers
- https://gist.github.com/mariuszpoplwski/4fbaab7f271bea99c733e3f2a4bafbb5
- https://github.com/airesvsg/acf-to-rest-api
- https://wordpress.org/plugins/acf-to-rest-api/#developers
Products affected by CVE-2020-13700
-
cpe:2.3:a:acf_to_rest_api_project:acf_to_rest_api:2.0.0
-
cpe:2.3:a:acf_to_rest_api_project:acf_to_rest_api:2.0.1
-
cpe:2.3:a:acf_to_rest_api_project:acf_to_rest_api:2.0.2
-
cpe:2.3:a:acf_to_rest_api_project:acf_to_rest_api:2.0.3
-
cpe:2.3:a:acf_to_rest_api_project:acf_to_rest_api:2.0.4
-
cpe:2.3:a:acf_to_rest_api_project:acf_to_rest_api:2.0.5
-
cpe:2.3:a:acf_to_rest_api_project:acf_to_rest_api:2.0.6
-
cpe:2.3:a:acf_to_rest_api_project:acf_to_rest_api:2.0.7
-
cpe:2.3:a:acf_to_rest_api_project:acf_to_rest_api:2.1.0
-
cpe:2.3:a:acf_to_rest_api_project:acf_to_rest_api:2.1.1
-
cpe:2.3:a:acf_to_rest_api_project:acf_to_rest_api:2.2.0
-
cpe:2.3:a:acf_to_rest_api_project:acf_to_rest_api:2.2.1
-
cpe:2.3:a:acf_to_rest_api_project:acf_to_rest_api:3.0.0
-
cpe:2.3:a:acf_to_rest_api_project:acf_to_rest_api:3.0.1
-
cpe:2.3:a:acf_to_rest_api_project:acf_to_rest_api:3.0.2
-
cpe:2.3:a:acf_to_rest_api_project:acf_to_rest_api:3.1.0