“Is vulnerable to Broken Access Control”

  • Resolved yarisyazari

    (@yarisyazari)


    1 year ago

    “The SearchIQ plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the getSIQPluginSettings function in versions up to, and including, 4.4. This makes it possible for unauthenticated attackers to view information such as the plugin settings, theme, and WordPress and PHP version.”

Viewing 4 replies - 1 through 4 (of 4 total)

  • Hi, also waiting for an update on this vulnerability

    Plugin Author SearchIQ

    (@searchiq)

    Hi, we are coordinating with our team to check your query and will update you soon.

    Plugin Author SearchIQ

    (@searchiq)

    We have checked the function mentioned in the query and found the function only provided basic information about the site and the SearchIQ settings. The only information provided by the function that was not publicly accessible otherwise was the ‘php_version’.

    All the information that the function returned was related to the SearchIQ plugin. We figured out that we don’t need this function to be used, so we have added a patch to the current open ajax call and removed this call. Now this ajax call doesn’t provide any response and hence the unauthorized access is not there anymore.

    Please upgrade to the latest version of the plugin and check on your site.

    Thread Starter yarisyazari

    (@yarisyazari)

    Thank you for your attention and quick solution…

Viewing 4 replies - 1 through 4 (of 4 total)
  • The topic ‘“Is vulnerable to Broken Access Control”’ is closed to new replies.