logoWordPressPluginsThemesAPISubmitContact
search-icon
logo
search-icon
WordPressPluginsThemesAPISubmitContactSecurity Scanner
Register

Software License Manager < 4.5.1 - Arbitrary Domain Deletion via CSRF

Description

The del_reistered_domains AJAX action of the plugin does not have any CSRF checks, and is vulnerable to a CSRF attack

Proof of Concept

https://example.com/wp-admin/admin-ajax.php?action=del_reistered_domain&id=1

Affects Plugins

software-license-manager

Fixed in version 4.5.1

References

CVE

CVE-2021-24711

URL

https://jetpack.com/2021/09/14/csrf-vulnerability-found-in-software-license-manager-plugin/

Classification

Type

CSRF

OWASP top 10

A2: Broken Authentication and Session Management

CWE

CWE-352

Miscellaneous

Original Researcher

Harald Eilertsen (JetPack)

Submitter

Harald Eilertsen

Verified

Yes

WPVDB ID

3351bc30-e5ff-471f-8d1c-b1bcdf419937

Timeline

Publicly Published

2021-09-13 (about 1 months ago)

Added

2021-09-13 (about 1 months ago)

Last Updated

2021-09-14 (about 1 months ago)

Our Other Services

WPScan WordPress Security Plugin