6.1

CVSS Score

3.1

Basic Information

CVE ID

CVE-2023-6813

GHSA ID

GHSA-x6p7-44rh-m3rr

EPSS Score

0.71807%

CWE

CWE-79

Published

7/11/2024

Updated

7/31/2024

KEV Status

Technology

PHP

Concerned about an active attack path?

Talk to our security experts and see Miggo in action.

Miggo Vulnerability Database

→

CVE-2023-6813

CVE-2023-6813: Login by Auth0 plugin for WordPress vulnerable to Reflected Cross-Site Scripting

Impact

The Auth0 WordPress plugin allows site administrators to opt-in to allowing the use of a wle parameter, which can be passed to the WordPress login page by end users. When this parameter is supplied using an expected value (which is randomly generated by the plugin, by default), the end user can fallback to using WordPress' native authentication behavior. (This is generally intended as an emergency fallback for administrators to still be able to access their dashboard in the event something goes wrong.)

In previous versions of the plugin, under specific conditions, this parameter could potentially accept an arbitrary string that would be improperly rendered, potentially allowing for a cross-site scripting (XSS) attack on the login page.

Patches

Please upgrade to v4.6.1 of the plugin to resolve the issue.

(GitHub Advisory)

6.1

CVSS Score

3.1

Basic Information

CVE ID

CVE-2023-6813

GHSA ID

GHSA-x6p7-44rh-m3rr

EPSS Score

0.71807%

CWE

CWE-79

Published

7/11/2024

Updated

7/31/2024

KEV Status

Technology

PHP

Technical Details

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Package Name	Ecosystem	Vulnerable Versions	First Patched Version
auth0/wordpress	composer	<= 4.6.0	4.6.1

Vulnerability Intelligence
Miggo AI

Root Cause Analysis

The vulnerability stems from improper handling of the 'wle' parameter in login URL construction. The diff shows a critical change where the function stopped using $_REQUEST['wle'] and instead used a stored wle_code value. This indicates the previous implementation was vulnerable to reflected XSS through crafted 'wle' parameters, as user input was directly embedded in URLs without proper output encoding or validation.

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

### Imp**t T** *ut** Wor*Pr*ss plu*in *llows sit* **ministr*tors to opt-in to *llowin* t** us* o* * `wl*` p*r*m*t*r, w*i** **n ** p*ss** to t** Wor*Pr*ss lo*in p*** *y *n* us*rs. W**n t*is p*r*m*t*r is suppli** usin* *n *xp**t** v*lu* (w*i** is r*n*o

Reasoning

T** vuln*r**ility st*ms *rom improp*r **n*lin* o* t** 'wl*' p*r*m*t*r in lo*in URL *onstru*tion. T** *i** s*ows * *riti**l ***n** w**r* t** *un*tion stopp** usin* $_R*QU*ST['wl*'] *n* inst*** us** * stor** wl*_*o** v*lu*. T*is in*i**t*s t** pr*vious

6.1

Basic Information

Concerned about an active attack path?

CVE-2023-6813: Login by Auth0 plugin for WordPress vulnerable to Reflected Cross-Site Scripting

Impact

Patches

6.1

Basic Information

Technical Details

Vulnerability IntelligenceMiggo AI

Root Cause Analysis

Vulnerable functions

WAF Protection Rules

WAF Rule

Reasoning

Vulnerability Intelligence
Miggo AI