Login Sign Up

CVE-2016-0796

7.5 HIGH

📋 TL;DR

CVE-2016-0796 affects WordPress mb.miniAudioPlayer plugin versions up to 1.7.6, allowing attackers to bypass security controls and download arbitrary audio files from the server. The vulnerability enables attackers to use the site as an open proxy to hide malicious traffic and access restricted files. All WordPress sites using vulnerable versions of this plugin are affected.

💻 Affected Systems

Products:
  • WordPress Plugin mb.miniAudioPlayer
Versions: Up to and including version 1.7.6
Operating Systems: All
Default Config Vulnerable: ⚠️ Yes
Notes: All installations with the vulnerable plugin version are affected regardless of configuration.

📦 What is this software?

Mb.miniaudioplayer by Mb.miniaudioplayer Project

View all CVEs affecting Mb.miniaudioplayer →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Attackers download sensitive files from the server, use the site as a proxy for attacks on other targets, and potentially escalate to further server compromise.

🟠

Likely Case

Unauthorized file downloads of audio files and use of the site as an open proxy for scanning or attacking other systems.

🟢

If Mitigated

Limited to attempted exploitation attempts that are blocked by proper input validation and access controls.

🌐 Internet-Facing: HIGH
🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ⚠️ Yes
Weaponized: LIKELY
Unauthenticated Exploit: ⚠️ Yes
Complexity: LOW

Exploitation requires minimal technical skill as the vulnerability is in input validation.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Version 1.7.7 or later

Vendor Advisory: https://wordpress.org/plugins/mb-miniaudioplayer/

Restart Required: No

Instructions:

1. Log into WordPress admin panel. 2. Navigate to Plugins. 3. Find mb.miniAudioPlayer. 4. Click 'Update Now' or manually update to version 1.7.7+. 5. Verify plugin is active and functioning.

🔧 Temporary Workarounds

Disable vulnerable plugin

all

Temporarily disable the mb.miniAudioPlayer plugin until patched

Web application firewall rule

all

Block requests to the vulnerable plugin endpoints

🧯 If You Can't Patch

  • Remove the plugin entirely from the WordPress installation
  • Implement strict file access controls at the web server level

🔍 How to Verify

Check if Vulnerable:

Check WordPress admin panel > Plugins > mb.miniAudioPlayer version. If version is 1.7.6 or lower, you are vulnerable.

Check Version:

wp plugin list --name=mb-miniaudioplayer --field=version

Verify Fix Applied:

After updating, verify the plugin version shows 1.7.7 or higher in WordPress admin.

📡 Detection & Monitoring

Log Indicators:

  • Unusual requests to mb.miniAudioPlayer plugin endpoints
  • Multiple file download attempts for .mp3, .mp4a, .wav, .ogg files

Network Indicators:

  • Outbound proxy traffic from your server to external targets
  • Unusual file download patterns

SIEM Query:

source="web_server_logs" AND (uri CONTAINS "mb.miniaudioplayer" OR uri CONTAINS "audio-player") AND (status=200 OR status=403)

📊 Metadata

CVE ID: CVE-2016-0796
CVSS v3 Score: 7.5 (HIGH)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
CWE: CWE-287
Published: July 28, 2022
Last Updated: November 21, 2024

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2016-0796, you might also want to check these:

CVE-2024-27767 10.0

CVE-2024-27767 is an authentication bypass vulnerability that allows attackers to gain unauthorized ...

Same vulnerability type (CWE-287)
CVE-2026-24898 10.0

OpenEMR versions before 8.0.0 contain an unauthenticated token disclosure vulnerability in the MedEx...

Same vulnerability type (CWE-287)
CVE-2026-20127 10.0

This critical authentication bypass vulnerability in Cisco Catalyst SD-WAN Controller and Manager al...

Same vulnerability type (CWE-287)