1. What is this vulnerability and why does it matter?

This vulnerability, identified as CVE-2024-3476, is a Cross-Site Request Forgery (CSRF) flaw found in the Side Menu Lite WordPress plugin. It specifically impacts versions prior to 4.2.1. The core issue is the absence of CSRF checks for certain bulk actions within the plugin. This matters significantly because it allows attackers to trick logged-in administrators into performing unwanted actions without their explicit consent, such as deleting buttons, potentially disrupting website functionality or user experience.

2. What are the CVSS score, severity level, and disclosure details?

The CVSS score for CVE-2024-3476 is 8.8, which places it at a High severity level.

• CVSS Score: 8.8
• Severity Level: High
• Disclosure Details: The vulnerability was published on 2024-05-02 06:00:03 UTC and was last modified on 2024-08-02 13:39:35 UTC. The SVRS (Severity Vector String) is 30.

3. Which products, vendors, systems, and versions are affected?

• Product: Side Menu Lite WordPress plugin
• Vendor: The developer of the Side Menu Lite WordPress plugin
• Systems: WordPress installations running the Side Menu Lite plugin
• Affected Versions: All versions of the Side Menu Lite WordPress plugin before 4.2.1 are affected.

4. What is the technical root cause and attack vector?

The technical root cause of this vulnerability is the lack of proper Cross-Site Request Forgery (CSRF) checks within certain bulk actions implemented in the Side Menu Lite WordPress plugin. This aligns with CWE-352 (Cross-Site Request Forgery). The attack vector involves an attacker crafting a malicious request that, when executed by a logged-in administrator's browser, can force the plugin to perform unintended actions due to the absence of validation mechanisms to ensure the request originated from a legitimate user interaction with the plugin's own interface.

5. How can this vulnerability be exploited?

An attacker can exploit this vulnerability by designing a malicious website or crafting a specially designed link (e.g., in an email or forum post) that contains a request targeting one of the Side Menu Lite plugin's vulnerable bulk actions. If a logged-in administrator visits the malicious website or clicks the malicious link, their browser will automatically send the crafted request, including their authentication cookies, to their WordPress site. Because the plugin lacks CSRF checks, it will process this request as if it were a legitimate action initiated by the administrator, leading to the execution of unwanted actions such as deleting buttons.

6. What mitigation steps and patches are available?

The primary mitigation step and patch available is to update the Side Menu Lite WordPress plugin. Users should upgrade to version 4.2.1 or a later version to address this vulnerability. This updated version is expected to include the necessary CSRF checks to prevent exploitation.

7. How can vulnerable systems be detected?

Vulnerable systems can be detected by checking the installed version of the Side Menu Lite WordPress plugin. Any WordPress installation running the Side Menu Lite plugin with a version number earlier than 4.2.1 is considered vulnerable. Administrators should verify their plugin versions through the WordPress admin interface or by inspecting the plugin files directly.

10. What public intelligence references and advisories exist?

The primary public intelligence reference for this issue is CVE-2024-3476 itself. This CVE record provides details about the vulnerability, its CVSS score, affected products, and other relevant information. Further advisories may be available from the WordPress plugin repository, security bulletins from hosting providers, or cybersecurity news outlets that track WordPress vulnerabilities.

11. What is the risk assessment and urgency level?

Given the CVSS score of 8.8 (High severity), the risk associated with CVE-2024-3476 is substantial. The vulnerability allows for unauthorized actions, such as deleting critical elements (e.g., buttons), to be performed by a logged-in administrator unknowingly. The urgency level for patching this vulnerability is high. Website administrators using the Side Menu Lite plugin should prioritize updating to version 4.2.1 or newer immediately to prevent potential exploitation and maintain the integrity and functionality of their WordPress sites.