CVE-2024-2297

CVE-2024-2297 is a privilege escalation vulnerability affecting the Bricks theme for WordPress in all versions up to and including 1.9.6.1. The issue stems from insufficient validation checks in the create_autosave AJAX function, which allows authenticated attackers to bypass access controls. It has a CVSS v3.1 base score of 7.1 (AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H) and is associated with CWE-269 (Improper Privilege Management).

Attackers with contributor-level access or higher can exploit this vulnerability to execute arbitrary PHP code with administrator-level privileges. Successful exploitation requires three specific conditions: the Bricks Builder must be enabled for posts, builder access must be enabled for contributor-level users, and "Code Execution" must be enabled for administrator-level users within the theme's settings. This enables network-based attacks with low privileges, user interaction, and high impact on confidentiality, integrity, and availability.

Advisories from Bricks and Wordfence recommend updating to Bricks version 1.9.7, which addresses the vulnerability. Security practitioners should verify theme settings to ensure the required conditions are not met and monitor for unauthorized admin actions on affected sites. Full details are available at https://bricksbuilder.io/release/bricks-1-9-7/ and https://www.wordfence.com/threat-intel/vulnerabilities/id/cb075e85-75fc-4008-8270-4d1064ace29e?source=cve.