CVE-2024-0679
The ColorMag theme for WordPress is vulnerable to unauthorized access due to a missing capability check on the plugin_action_callback() function in all versions up to, and including, 3.1.2. This makes it possible for authenticated attackers, with subscriber-level access and above, to install and activate arbitrary plugins.
We have discovered 17,520 live websites that are affected by CVE-2024-0679.
Affected Software
| Product |  ColorMag |
| Category | Wordpress Themes |
| Vulnerable Versions |
|
| Total Vulnerable Versions | 251 |
| Vulnerable Domains | 17,520 live websites (63.50% of ColorMag install base) |
Distribution by Website Rank
The diagram provides a graphic representation of the correlation between the occurrence of CVE-2024-0679 and the relative popularity of websitesDetails
- Published - Jan 20, 2024
- Updated - Jan 20, 2024
Credits
- Sean Murphy (finder)
CVE References
CWE References
Countries
 United States | 4,263 websites |
 Germany | 1,622 websites |
 France | 1,412 websites |
 Italy | 910 websites |
 Poland | 908 websites |
 Russia | 898 websites |
 Brazil | 791 websites |
 GB | 545 websites |
 Turkey | 482 websites |
 Netherlands | 367 websites |
TLDs
| .com | 6,326 websites |
| .org | 1,110 websites |
| .de | 986 websites |
| .ru | 774 websites |
| .net | 709 websites |
| .pl | 680 websites |
| .it | 658 websites |
| .com.br | 623 websites |
| .fr | 603 websites |
| .nl | 304 websites |
Vulnerable Versions
Vulnerable versions are highlighted in redGeographical Distribution
The distribution of websites across the globe that are exposed to CVE-2024-0679 through included software libraries and plugins.References
- https://www.wordfence.com/threat-intel/vulnerabilities/id/e982d457-29db-468f-88c3-5afe04002dcf?source=cve
- https://themes.trac.wordpress.org/browser/colormag/3.1.2/functions.php#L237
- https://themes.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&old=214568%40colormag&new=214568%40colormag&sfp_email=&sfph_mail=
Websites affected by CVE-2024-0679
Top websites that are affected by CVE-2024-0679. Please click on the "Contact us" button above to get more information.| Domain | Country | Rank | Contacts |
|---|---|---|---|
| ******.ru | Russia | **,*** | |
| ******.com | United States | **,*** | |
| *****.com | United States | **,*** | |
| ********.com | United States | **,*** | |
| ***.***.be |  Belgium | **,*** | |
| ********.net | United States | **,*** | |
| ***.************.com | United States | **,*** | |
| ****.***.br | Brazil | **,*** | |
| ***.*************.com | United States | **,*** | |
| ********.net | United States | ***,*** |