WordPress Plugin Vulnerabilities

OAuth Single Sign On - SSO (OAuth Client) < 6.24.2 - IdP Discard via CSRF

Description

The plugin does not have CSRF checks when discarding Identify providers (IdP), which could allow attackers to make logged in admins delete all IdP via a CSRF attack

Proof of Concept

Make a logged in admin open: https://example.com/wp-admin/admin.php?page=mo_oauth_settings&tab=config&action=discard

Affects Plugins

miniorange-login-with-eve-online-google-facebook

Fixed in version 6.24.2

References

CVE

CVE-2023-1093

Classification

Type

CSRF

OWASP top 10

A2: Broken Authentication and Session Management

CWE

CWE-352

Miscellaneous

Original Researcher

Erwan LR (WPScan)

Submitter

Erwan LR (WPScan)

Submitter website

https://wpscan.com

Verified

Yes

WPVDB ID

1e13b9ea-a3ef-483b-b967-6ec14bd6d54d

Timeline

Publicly Published

2023-02-28 (about 7 months ago)

Added

2023-02-28 (about 7 months ago)

Last Updated

2023-02-28 (about 7 months ago)

Our Other Services

WPScan WordPress Security Plugin