Privilege Escalation via AAM User Roles in Advanced Access Manager Plugin for WordPress

Privilege Escalation via AAM User Roles in Advanced Access Manager Plugin for WordPress

CVE-2020-35935 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

The Advanced Access Manager plugin before 6.6.2 for WordPress allows privilege escalation on profile updates via the aam_user_roles POST parameter if Multiple Role support is enabled. (The mechanism for deciding whether a user was entitled to add a role did not work in various custom-role scenarios.)

Learn more about our Wordpress Pen Testing.