CVE-2023-47760 – This vulnerability allows attackers to bypass a... (How to Fix)

Q: What is the severity of CVE-2023-47760?

CVE-2023-47760 has a CVSS score of 4.3 (MEDIUM). This vulnerability allows attackers to bypass authorization controls in the Essential Blocks for Gutenberg WordPress plugin, potentially accessing restricted functionality. It affects all WordPress sites using Essential Blocks for Gutenberg versions up to 4.2.0.

📋 TL;DR

This vulnerability allows attackers to bypass authorization controls in the Essential Blocks for Gutenberg WordPress plugin, potentially accessing restricted functionality. It affects all WordPress sites using Essential Blocks for Gutenberg versions up to 4.2.0.

💻 Affected Systems

Products:

Essential Blocks for Gutenberg WordPress Plugin

Versions: All versions up to and including 4.2.0

Operating Systems: Any OS running WordPress

Default Config Vulnerable: ⚠️ Yes

Notes: Affects all WordPress installations using vulnerable plugin versions regardless of configuration.

📦 What is this software?

Essential Blocks by Wpdeveloper

View all CVEs affecting Essential Blocks →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Attackers could modify plugin settings, inject malicious content, or access administrative functions they shouldn't have permission to use.

🟠

Likely Case

Unauthorized users gain access to plugin configuration options they shouldn't be able to modify, potentially disrupting site functionality.

🟢

If Mitigated

With proper user role management and network segmentation, impact is limited to plugin-specific functionality.

🌐 Internet-Facing: HIGH - WordPress sites are typically internet-facing, and the vulnerability affects authorization controls.

🏢 Internal Only: MEDIUM - Internal WordPress installations could still be exploited by authenticated users with lower privileges.

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ✅ No

Complexity: LOW

Requires at least some level of WordPress user authentication, but specific exploit details are not publicly documented.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: 4.2.1 or later

Vendor Advisory: https://patchstack.com/database/wordpress/plugin/essential-blocks/vulnerability/wordpress-essential-blocks-plugin-4-2-0-broken-access-control-vulnerability?_s_id=cve

Restart Required: No

Instructions:

1. Log into WordPress admin panel. 2. Navigate to Plugins → Installed Plugins. 3. Find 'Essential Blocks for Gutenberg'. 4. Click 'Update Now' if available. 5. Alternatively, download latest version from WordPress repository and manually update.

🔧 Temporary Workarounds

Disable vulnerable plugin

all

Temporarily deactivate Essential Blocks for Gutenberg until patched

wp plugin deactivate essential-blocks

Restrict user roles

all

Limit administrative access and review user permissions

🧯 If You Can't Patch

Implement strict user role management and principle of least privilege
Monitor plugin-related activity and implement web application firewall rules

🔍 How to Verify

Check if Vulnerable:

Check WordPress admin panel → Plugins → Essential Blocks for Gutenberg → Version number

Check Version:

wp plugin get essential-blocks --field=version

Verify Fix Applied:

Verify plugin version is 4.2.1 or higher in WordPress admin

📡 Detection & Monitoring

Log Indicators:

Unauthorized access attempts to plugin admin endpoints
Unexpected plugin configuration changes

Network Indicators:

Unusual POST requests to /wp-admin/admin-ajax.php with plugin-specific actions

SIEM Query:

source="wordpress" AND (uri_path="/wp-admin/admin-ajax.php" AND action CONTAINS "essential_blocks") AND user_role!="administrator"

📊 Metadata

CVE ID: CVE-2023-47760

CVSS v3 Score: 4.3 (MEDIUM)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

CWE: CWE-862

Published: December 9, 2024

Last Updated: January 22, 2025

🔗 References

https://patchstack.com/database/wordpress/plugin/essential-blocks/vulnerability/wordpress-essential-blocks-plugin-4-2-0-broken-access-control-vulnerability?_s_id=cve Third Party Advisory

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2023-47760, you might also want to check these: