WordPress Plugin Vulnerabilities

Doneren met Mollie < 2.8.5 - Unauthorised CSV Export leading to Sensitive Data Disclosure

Description

The plugin did not check for user capability in the dmm_export_donations() function, allowing any authenticated user to export a CSV file containing all donors personal information.

Proof of Concept

Affects Plugins

Plugin icon
doneren-met-mollie
Fixed in 2.8.5

References

URL
https://blog.nintechnet.com/information-disclosure-vulnerability-fixed-in-wordpress-doneren-met-mollie-plugin/
URL
https://plugins.trac.wordpress.org/changeset/2459548

Classification

Type
ACCESS CONTROLS
OWASP top 10
A5: Broken Access Control
CWE
CWE-284
CVSS
6.5 (medium)

Miscellaneous

Original Researcher
Jerome Bruandet (nintechnet)
Verified
No
WPVDB ID
36afc442-9634-498e-961e-4c935880cd2b

Timeline

Publicly Published
2021-01-22 (about 4 years ago)
Added
2021-01-22 (about 4 years ago)
Last Updated
2021-01-23 (about 4 years ago)

Other

Published
Title
Published
2024-02-12
Title
Sunshine Photo Cart: Free Client Galleries for Photographers < 3.1 - Unauthenticated Sensitive Information Exposure via Invoice
Published
2021-07-19
Title
RestroPress < 2.8.3.1 - Unauthorised AJAX Calls
Published
2021-04-20
Title
Redirection for Contact Form 7 < 2.3.4 - Unprotected AJAX Actions
Published
2021-09-30
Title
JS Job Manager < 1.1.9 - Unauthenticated Arbitrary Plugin Installation/Activation
Published
2024-04-08
Title
GamiPress < 6.8.9 - Broken Access Control