Description
The User Registration & Membership WordPress plugin before 5.2.2 does not verify the authenticity of incoming payment-provider webhook notifications before acting on them, allowing unauthenticated attackers to forge a payment-approved event and activate a paid membership subscription without completing a real payment.
Problem types
CWE-287 Improper Authentication
Product status
Any version before 5.2.2
Credits
Alessandro Greco aka Aleff
Giovanbattista Ianni (University of Calabria - UNICAL)
WPScan
References
wpscan.com/...rability/faf55649-8f76-4abf-a6b9-0d0774e22d29/