WordPress s2Member Plugin 's2_invoice' Parameter Remote Security Bypass Vulnerability

Bugtraq ID:	50952
Class:	Input Validation Error
CVE:
Remote:	Yes
Local:	No
Published:	Dec 07 2011 12:00AM
Updated:	Dec 07 2011 12:00AM
Credit:	Pedja
Vulnerable:	WebSharks s2Member 111205 WebSharks s2Member 110813 WebSharks s2Member 110812
Not Vulnerable:	WebSharks s2Member 111206

WordPress s2Member Plugin 's2_invoice' Parameter Remote Security Bypass Vulnerability

s2Member plugin for WordPress is prone to a security-bypass vulnerability.

An attacker can exploit this issue to access arbitrary products without proper authorization.

s2member versions prior to 11206 are vulnerable.

WordPress s2Member Plugin 's2_invoice' Parameter Remote Security Bypass Vulnerability

Attackers can exploit this issue through a web browser.

WordPress s2Member Plugin 's2_invoice' Parameter Remote Security Bypass Vulnerability

Solution:
Vendor updates are available. Please see the references for more information.

WordPress s2Member Plugin 's2_invoice' Parameter Remote Security Bypass Vulnerability

References:

• s2Member Homepage (WebSharks)
  
• s2Member Release Notes (WebShark)