WordPress Plugin Vulnerabilities

OAuth Single Sign On - SSO (OAuth Client) < 6.24.2 - IdP Discard via CSRF

Description

The plugin does not have CSRF checks when discarding Identify providers (IdP), which could allow attackers to make logged in admins delete all IdP via a CSRF attack

Proof of Concept

Make a logged in admin open: https://example.com/wp-admin/admin.php?page=mo_oauth_settings&tab=config&action=discard

Affects Plugins

Plugin icon
miniorange-login-with-eve-online-google-facebook
Fixed in 6.24.2

References

CVE
CVE-2023-1093

Classification

Type
CSRF
OWASP top 10
A2: Broken Authentication and Session Management
CWE
CWE-352
CVSS
5.4 (medium)

Miscellaneous

Original Researcher
Erwan LR (WPScan)
Submitter
Erwan LR (WPScan)
Submitter website
https://wpscan.com
Verified
Yes
WPVDB ID
1e13b9ea-a3ef-483b-b967-6ec14bd6d54d

Timeline

Publicly Published
2023-02-28 (about 1 years ago)
Added
2023-02-28 (about 1 years ago)
Last Updated
2023-02-28 (about 1 years ago)

Other

Published
Title
Published
2020-04-29
Title
Ninja Forms < 3.4.24.2 - CSRF to Stored XSS
Published
2023-10-13
Title
WhitePage <= 1.1.5 - Arbitrary Settings Update via CSRF
Published
2023-02-16
Title
Schema - All In One Schema Rich Snippets < 1.6.6 - Multiple CSRF
Published
2022-09-05
Title
Login Block IPs <= 1.0.0 - Arbitrary Setting Update via CSRF
Published
2024-03-25
Title
Easy PopUp Show <= 0.12 - Cross-Site Request Forgery