WPScan
How it worksPricing
Vulnerabilities
WordPressPluginsThemesStatsSubmit vulnerabilities
For developers
StatusAPI detailsCLI scanner
Contact

WordPress Plugin Vulnerabilities

Software License Manager < 4.5.1 - Arbitrary Domain Deletion via CSRF

Description

The del_reistered_domains AJAX action of the plugin does not have any CSRF checks, and is vulnerable to a CSRF attack

Proof of Concept

https://example.com/wp-admin/admin-ajax.php?action=del_reistered_domain&id=1

Affects Plugins

software-license-manager
Fixed in version 4.5.1

References

CVE
CVE-2021-24711
URL
https://jetpack.com/2021/09/14/csrf-vulnerability-found-in-software-license-manager-plugin/

Classification

Type

CSRF

OWASP top 10
A2: Broken Authentication and Session Management
CWE
CWE-352

Miscellaneous

Original Researcher

Harald Eilertsen (JetPack)

Submitter

Harald Eilertsen

Verified

Yes

WPVDB ID
3351bc30-e5ff-471f-8d1c-b1bcdf419937

Timeline

Publicly Published

2021-09-13 (about 1 years ago)

Added

2021-09-13 (about 1 years ago)

Last Updated

2022-04-08 (about 5 months ago)

Our Other Services

WPScan WordPress Security Plugin