WordPress Plugin Vulnerabilities

Plausible Analytics < 1.2.4 - Subscriber+ Arbitrary Settings Update

Description

The plugin has a flawed logic when checking for authorisation and CSRF before updating its settings, allowing any authenticated users, such as subscriber, to update the plugin's settings. The attack is also possible via CSRF against any authenticated user.

Proof of Concept

Affects Plugins

Plugin icon
plausible-analytics
Fixed in 1.2.4

Classification

Type
NO AUTHORISATION
OWASP top 10
A5: Broken Access Control
CWE
CWE-862
CVSS
4.3 (medium)

Miscellaneous

Original Researcher
Ankur Modi
Verified
Yes
WPVDB ID
0c17ce5d-22ee-4512-9ca1-81c98def6dad

Timeline

Publicly Published
2022-05-27 (about 3 years ago)
Added
2022-05-27 (about 3 years ago)
Last Updated
2022-05-27 (about 3 years ago)

Other

Published
Title
Published
2023-11-23
Title
Porto Theme - Functionality < 2.12.1 - Missing Authorization
Published
2025-09-06
Title
Travel Booking WordPress Theme < 3.2.3 - Missing Authorization to Unauthenticated Arbitrary Content Deletion
Published
2024-12-15
Title
Poll Maker < 5.5.1 - Missing Authorization
Published
2024-10-09
Title
WP Helper Premium < 4.6.2 - Missing Authorization in whp_smtp_send_mail_test
Published
2024-12-17
Title
Smart Shopify Product <= 1.0.2 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Content Deletion