WordPress Plugin Vulnerabilities

Doneren met Mollie < 2.8.5 - Unauthorised CSV Export leading to Sensitive Data Disclosure

Description

The plugin did not check for user capability in the dmm_export_donations() function, allowing any authenticated user to export a CSV file containing all donors personal information.

Proof of Concept

Affects Plugins

Plugin icon
doneren-met-mollie
Fixed in 2.8.5

References

URL
https://blog.nintechnet.com/information-disclosure-vulnerability-fixed-in-wordpress-doneren-met-mollie-plugin/
URL
https://plugins.trac.wordpress.org/changeset/2459548

Classification

Type
ACCESS CONTROLS
OWASP top 10
A5: Broken Access Control
CWE
CWE-284
CVSS
6.5 (medium)

Miscellaneous

Original Researcher
Jerome Bruandet (nintechnet)
Verified
No
WPVDB ID
36afc442-9634-498e-961e-4c935880cd2b

Timeline

Publicly Published
2021-01-22 (about 4 years ago)
Added
2021-01-22 (about 4 years ago)
Last Updated
2021-01-23 (about 4 years ago)

Other

Published
Title
Published
2021-04-14
Title
BuddyPress < 7.3.0 - Multiple Authenticated REST API Vulnerabilities
Published
2022-09-19
Title
Memberpress Downloads < 1.2.6 - Subscriber+ Arbitrary File Upload
Published
2021-08-31
Title
WooCommerce Dynamic Pricing & Discounts < 2.4.2 - Unauthenticated Settings Export
Published
2024-09-23
Title
BA Book Everything < 1.6.21 - Unauthenticated Arbitrary User Password Reset
Published
2021-06-04
Title
Social Sharing Plugin - Kiwi 2.1.0 - Unauthenticated Arbitrary WordPress Options Update and Read