CVE-2024-9518: CWE-269 Improper Privilege Management in userplus User registration & user profile – UserPlus
The UserPlus plugin for WordPress is vulnerable to privilege escalation in versions up to, and including, 2.0 due to insufficient restriction on the 'form_actions' and 'userplus_update_user_profile' functions. This makes it possible for unauthenticated attackers to specify their user role by supplying the 'role' parameter during a registration.
AI Analysis
Technical Summary
CVE-2024-9518 is a critical privilege escalation vulnerability in the UserPlus WordPress plugin (versions up to 2.0). The issue stems from improper privilege management (CWE-269) where the plugin fails to sufficiently restrict access to 'form_actions' and 'userplus_update_user_profile' functions. This allows unauthenticated attackers to specify the 'role' parameter during user registration, effectively granting themselves elevated privileges. The vulnerability has a CVSS 3.1 base score of 9.8 (AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H), reflecting its ease of exploitation and high impact on confidentiality, integrity, and availability. No patch or official fix has been disclosed yet.
Potential Impact
Successful exploitation allows unauthenticated attackers to escalate privileges by assigning themselves arbitrary user roles during registration. This can lead to full administrative control over the WordPress site, compromising confidentiality, integrity, and availability of the affected system. Given the critical CVSS score, the impact is severe.
Mitigation Recommendations
Patch status is not yet confirmed — check the vendor advisory for current remediation guidance. Until an official fix is released, it is recommended to disable or remove the UserPlus plugin if possible, or restrict access to registration endpoints through other means such as web application firewalls or access controls. Monitor vendor channels for updates and apply patches immediately once available.
CVE-2024-9518: CWE-269 Improper Privilege Management in userplus User registration & user profile – UserPlus
Description
The UserPlus plugin for WordPress is vulnerable to privilege escalation in versions up to, and including, 2.0 due to insufficient restriction on the 'form_actions' and 'userplus_update_user_profile' functions. This makes it possible for unauthenticated attackers to specify their user role by supplying the 'role' parameter during a registration.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
CVE-2024-9518 is a critical privilege escalation vulnerability in the UserPlus WordPress plugin (versions up to 2.0). The issue stems from improper privilege management (CWE-269) where the plugin fails to sufficiently restrict access to 'form_actions' and 'userplus_update_user_profile' functions. This allows unauthenticated attackers to specify the 'role' parameter during user registration, effectively granting themselves elevated privileges. The vulnerability has a CVSS 3.1 base score of 9.8 (AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H), reflecting its ease of exploitation and high impact on confidentiality, integrity, and availability. No patch or official fix has been disclosed yet.
Potential Impact
Successful exploitation allows unauthenticated attackers to escalate privileges by assigning themselves arbitrary user roles during registration. This can lead to full administrative control over the WordPress site, compromising confidentiality, integrity, and availability of the affected system. Given the critical CVSS score, the impact is severe.
Mitigation Recommendations
Patch status is not yet confirmed — check the vendor advisory for current remediation guidance. Until an official fix is released, it is recommended to disable or remove the UserPlus plugin if possible, or restrict access to registration endpoints through other means such as web application firewalls or access controls. Monitor vendor channels for updates and apply patches immediately once available.
Technical Details
- Data Version
- 5.1
- Assigner Short Name
- Wordfence
- Date Reserved
- 2024-10-04T12:11:24.815Z
- Cvss Version
- 3.1
- State
- PUBLISHED
Threat ID: 699f6b4fb7ef31ef0b5515f9
Added to database: 2/25/2026, 9:36:15 PM
Last enriched: 4/9/2026, 8:37:06 PM
Last updated: 4/12/2026, 5:20:35 PM
Views: 8
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.