WordPress Plugin Vulnerabilities
ToTop Link <= 1.7.1 - Unauthenticated PHP Object Injection
Description
The plugin passes base64 encoded user input to the unserialize() PHP function, which could lead to PHP Object injection if a plugin installed on the blog has a suitable gadget chain.
Proof of Concept
https://example.com/wp-content/plugins/totop-link/totop-link.css.php?vars=base64encoded_payload
Affects Plugins
References
CVE
Classification
Type
OBJECT INJECTION
OWASP top 10
CWE
CVSS
Miscellaneous
Original Researcher
Muhammed Kara
Submitter
Muhammed Kara
Verified
Yes
WPVDB ID
Timeline
Publicly Published
2021-11-15 (about 2 years ago)
Added
2021-11-15 (about 2 years ago)
Last Updated
2022-04-23 (about 2 years ago)