WP Quick FrontEnd Editor <= 5.5 - Authenticated Content Injection

Description

The AJAX action save_content_front lack any capability and CSRF checks, allowing low privilege users to modify any page or post from the blog. This could also lead to XSS via a CSRF attack on a logged in high privilege user.

Affects Plugins

wp-quick-front-end-editor

No known fix - plugin closed

References

URL

https://blog.nintechnet.com/multiple-vulnerabilities-in-wordpress-wp-quick-frontend-editor-plugin-unpatched/

Classification

Type

CONTENT INJECTION

OWASP top 10

A1: Injection

CWE

CWE-80

Miscellaneous

Original Researcher

Jerome Bruandet (nintechnet)

Verified

WPVDB ID

21de3b4e-aa30-493b-993a-522f56da821e

Timeline

Publicly Published

2021-01-12 (about 8 months ago)

Added

2021-01-12 (about 8 months ago)

Last Updated

2021-01-14 (about 8 months ago)

Our Other Services

WPScan WordPress Security Plugin