The Property plugin for WordPress versions 1.0.5 through 1.0.6 is susceptible to privilege escalation, allowing authenticated attackers to gain administrative access.

This privilege escalation vulnerability stems from a missing capability check on the property_package_user_role metadata. Authenticated attackers with Author-level access can manipulate the PayPal registration form to elevate their privileges to Administrator.

The CVSS score of 8.8 reflects the high-risk nature of this vulnerability, as it allows an attacker to gain full control over the WordPress site. This could result in unauthorized data access, site defacement, and the deployment of malicious plugins or backdoors, causing significant reputational and operational damage.

Immediate Action: Update the Property plugin to the latest available version that includes the necessary capability checks.

Proactive Monitoring: Audit WordPress user accounts for any unauthorized accounts with Administrator privileges and review activity logs for suspicious post submissions.

Compensating Controls: Use a Web Application Firewall (WAF) to block suspicious requests targeting the registration or metadata fields associated with the plugin.

Public Exploit Available: False

Administrators should treat this privilege escalation vulnerability with high urgency. Ensure the plugin is updated immediately and perform a security audit of all user roles within the WordPress environment to ensure no unauthorized privilege escalation has already occurred.