WordPress Plugin Vulnerabilities

Doneren met Mollie < 2.8.5 - Unauthorised CSV Export leading to Sensitive Data Disclosure

Description

The plugin did not check for user capability in the dmm_export_donations() function, allowing any authenticated user to export a CSV file containing all donors personal information.

Proof of Concept

GET /wp-admin/admin-post.php?action=dmm_export

Affects Plugins

doneren-met-mollie

Fixed in version 2.8.5

References

URL

https://blog.nintechnet.com/information-disclosure-vulnerability-fixed-in-wordpress-doneren-met-mollie-plugin/

URL

https://plugins.trac.wordpress.org/changeset/2459548

Classification

Type

ACCESS CONTROLS

OWASP top 10

A5: Broken Access Control

CWE

CWE-284

Miscellaneous

Original Researcher

Jerome Bruandet (nintechnet)

Verified

WPVDB ID

36afc442-9634-498e-961e-4c935880cd2b

Timeline

Publicly Published

2021-01-22 (about 2 years ago)

Added

2021-01-22 (about 2 years ago)

Last Updated

2021-01-23 (about 2 years ago)

Our Other Services

WPScan WordPress Security Plugin