CVE-2024-7786 Scanner
CVE-2024-7786 scanner - Arbitrary File Disclosure vulnerability in Sensei LMS WordPress Plugin
Short Info
Level
High
Single Scan
Single Scan
Can be used by
Asset Owner
Estimated Time
10 seconds
Time Interval
1 month 3 days
Scan only one
Domain, IPv4, Subdomain
Toolbox
-
Sensei LMS is a popular plugin used in WordPress websites for managing online courses. It is developed by Automattic and widely adopted by educators and organizations looking to provide e-learning solutions. This plugin integrates with WooCommerce for paid courses, making it suitable for e-commerce and educational platforms alike. Many users leverage Sensei LMS for its flexibility in creating and managing content. However, vulnerabilities in its REST API expose email templates to potential attackers.
The vulnerability allows unauthenticated attackers to access sensitive email templates through exposed REST API routes. Attackers can retrieve details like template ID and content, leading to information leakage. This type of disclosure may give insights into system configuration and potential vectors for further exploitation. Users running Sensei LMS below version 4.24.2 are affected.
The vulnerability stems from improper protection of REST API routes in Sensei LMS. The affected endpoints can be accessed without authentication, allowing attackers to retrieve information about email templates. By sending requests to the /wp-json/wp/v2/sensei_email/ endpoint, attackers can enumerate and access specific email templates using their IDs. The API response contains sensitive information such as the email template ID and media URLs associated with the email, leading to exposure.
Exploiting this vulnerability allows attackers to gain access to sensitive email templates, potentially leaking confidential information. While this flaw does not directly enable code execution, it can lead to the exposure of critical data. Attackers could also use this information to craft more targeted phishing campaigns or gain further insights into system configuration.
By using S4E's platform, you gain access to advanced vulnerability scanning tools, enabling you to protect your digital assets from critical threats. Our system helps identify misconfigurations and vulnerabilities, providing actionable insights and remediation steps. With real-time monitoring and detailed reporting, S4E enhances your organization's cybersecurity posture, safeguarding your online presence.
References:
