CVE-2024-6074 – This vulnerability in the wp-cart-for-digital-p... (How to Fix)

Q: What is the severity of CVE-2024-6074?

CVE-2024-6074 has a CVSS score of 6.1 (MEDIUM). This vulnerability in the wp-cart-for-digital-products WordPress plugin allows attackers to inject malicious scripts via unsanitized parameters, which are then reflected back to users. It primarily affects high-privilege users like administrators who could be tricked into clicking malicious links. The attack requires user interaction but can lead to session hijacking or administrative account compromise.

📋 TL;DR

This vulnerability in the wp-cart-for-digital-products WordPress plugin allows attackers to inject malicious scripts via unsanitized parameters, which are then reflected back to users. It primarily affects high-privilege users like administrators who could be tricked into clicking malicious links. The attack requires user interaction but can lead to session hijacking or administrative account compromise.

💻 Affected Systems

Products:

wp-cart-for-digital-products WordPress plugin

Versions: All versions before 8.5.5

Operating Systems: All

Default Config Vulnerable: ⚠️ Yes

Notes: Requires WordPress installation with vulnerable plugin version. Attack requires user interaction with malicious link.

📦 What is this software?

Wp Estore by Tipsandtricks Hq

View all CVEs affecting Wp Estore →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Administrator account takeover leading to full website compromise, data theft, or malware injection across the WordPress site.

🟠

Likely Case

Session hijacking of logged-in users, credential theft, or limited administrative actions if an admin is tricked.

🟢

If Mitigated

Minimal impact with proper input validation, output encoding, and user awareness training.

🌐 Internet-Facing: HIGH

🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ⚠️ Yes

Weaponized: LIKELY

Unauthenticated Exploit: ⚠️ Yes

Complexity: LOW

Exploitation is straightforward via crafted URLs. No authentication required to trigger the vulnerability, though user interaction is needed for impact.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: 8.5.5

Vendor Advisory: https://wpscan.com/vulnerability/e518af46-cb8e-43ff-a7c1-5300b36d9113/

Restart Required: No

Instructions:

1. Log into WordPress admin panel. 2. Navigate to Plugins > Installed Plugins. 3. Find 'wp-cart-for-digital-products'. 4. Click 'Update Now' if available, or manually update to version 8.5.5 or later.

🔧 Temporary Workarounds

Input Validation Web Application Firewall Rule

all

Block malicious parameter values containing script tags or JavaScript code

WAF-specific configuration required

Disable Vulnerable Plugin

linux

Temporarily disable the plugin until patched

wp plugin deactivate wp-cart-for-digital-products

🧯 If You Can't Patch

Implement Content Security Policy (CSP) headers to restrict script execution
Educate users about not clicking untrusted links, especially administrators

🔍 How to Verify

Check if Vulnerable:

Check plugin version in WordPress admin under Plugins > Installed Plugins

Check Version:

wp plugin get wp-cart-for-digital-products --field=version

Verify Fix Applied:

Confirm plugin version is 8.5.5 or later and test parameter injection

📡 Detection & Monitoring

Log Indicators:

Unusual parameter values containing script tags in web server logs
Multiple requests with similar malicious payloads

Network Indicators:

HTTP requests with suspicious parameters containing JavaScript code

SIEM Query:

web.url:*wp-cart-for-digital-products* AND (web.param:*<script* OR web.param:*javascript:* OR web.param:*onerror=*)

📊 Metadata

CVE ID: CVE-2024-6074

CVSS v3 Score: 6.1 (MEDIUM)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

CWE: CWE-79

Published: July 15, 2024

Last Updated: November 21, 2024

🔗 References

https://wpscan.com/vulnerability/e518af46-cb8e-43ff-a7c1-5300b36d9113/ Exploit,Third Party Advisory
https://wpscan.com/vulnerability/e518af46-cb8e-43ff-a7c1-5300b36d9113/ Exploit,Third Party Advisory

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2024-6074, you might also want to check these: