CVE-2020-4050

Summary

In affected versions of WordPress, misuse of the set-screen-option filter's return value allows arbitrary user meta fields to be saved. It does require an admin to install a plugin that would misuse the filter. Once installed, it can be leveraged by low privileged users. This has been patched in version 5.4.2, along with all the previously affected versions via a minor release (5.3.4, 5.2.7, 5.1.6, 5.0.10, 4.9.15, 4.8.14, 4.7.18, 4.6.19, 4.5.22, 4.4.23, 4.3.24, 4.2.28, 4.1.31, 4.0.31, 3.9.32, 3.8.34, 3.7.34).

Affected Software

VendorProductVersion RangeStatus
WordPresswordpress-develop>= 5.4.0, < 5.4.2affected
WordPresswordpress-develop>= 5.3.0, < 5.3.4affected
WordPresswordpress-develop>= 5.2.0, < 5.2.7affected
WordPresswordpress-develop>= 5.1.0, < 5.1.6affected
WordPresswordpress-develop>= 5.0.0, < 5.0.10affected
WordPresswordpress-develop>= 4.9.0, < 4.9.15affected
WordPresswordpress-develop>= 4.8.0, < 4.8.14affected
WordPresswordpress-develop>= 4.7.0, < 4.7.18affected
WordPresswordpress-develop>= 4.6.0, < 4.6.19affected
WordPresswordpress-develop>= 4.5.0, < 4.5.22affected
WordPresswordpress-develop>= 4.4.0, < 4.4.23affected
WordPresswordpress-develop>= 4.3.0, < 4.3.24affected
WordPresswordpress-develop>= 4.2.0, < 4.2.28affected
WordPresswordpress-develop>= 4.1.0, < 4.1.31affected
WordPresswordpress-develop>= 4.0.0, < 4.0.31affected
WordPresswordpress-develop>= 3.9.0, < 3.9.32affected
WordPresswordpress-develop>= 3.8.0, < 3.8.34affected
WordPresswordpress-develop>= 3.7.0, < 3.7.34affected

Weaknesses

  • CWE-288: CWE-288: Authentication Bypass Using an Alternate Path or Channel

ADP Enrichment

CVE Program Container

Additional References

References