CVE-2022-3805 Scanner

The Jeg Elementor Kit plugin is widely used by WordPress website developers to create and manage page designs with ease. Developed by JegTheme, this plugin provides various customizable elements that enhance the functionality of Elementor-based websites. This software is an add-on for WordPress and is commonly used by web professionals in designing sophisticated website layouts. The vulnerable versions of this plugin, up to and including 2.5.6, are implemented across numerous WordPress sites, making its security crucial. It is primarily aimed at providing users with more design control, aiding developers in delivering more visually appealing and functional websites. Therefore, ensuring its security is vital for maintaining the integrity and reliability of said websites.

The Authorization Bypass vulnerability found in the Jeg Elementor Kit plugin allows unauthenticated users to perform actions reserved for authenticated users. This is due to improper handling of nonce values that can be easily obtained from certain pages edited with the plugin. The exploit could permit unauthorized changes to the plugin settings, leading to unauthorized API key updates and style changes, among others. This vulnerability poses a significant security risk as it undermines the expected authorization controls built within the plugin. Given its severity, timely mitigation actions are necessary to prevent any unintended modifications by malicious entities. Users and administrators are urged to update to the non-vulnerable version to safeguard against potential exploitation.

The vulnerability stems from inadequate validation controls surrounding sensitive operations within the plugin, specifically affecting versions up to and including 2.5.6. An attacker may leverage this weakness by obtaining a nonce from plugin-edited pages, exploiting this to bypass authorization and change critical settings such as MailChimp API keys and global site styles. Moreover, the 404 page settings and enabled elements can also be altered without authentication. The attack does not require privileged access, thus increasing its exploitability. Administrators need to focus on updating affected components or applying other mitigating measures to eliminate this risk.

If successfully exploited, the vulnerability can have numerous adverse effects on affected websites. These may include unauthorized modification of settings, potentially leading to exposure or misuse of customer data linked to compromised API keys. The changes allowed by unauthorized users can also affect the look and feel of websites, thereby impacting user experience and trust. Furthermore, this may open the doors to additional security vulnerabilities and compromise the integrity of web content. Users' trust and the website's reputation could suffer, especially if essential functionalities cease to work correctly. Thus, the vulnerability could incur further financial and reputational losses if not quickly and effectively addressed.

REFERENCES

• https://wordpress.org/plugins/jeg-elementor-kit/#developers
• https://www.wordfence.com/threat-intel/vulnerabilities/id/c9955d65-afb3-4d28-abd2-9f2fec92d013