WordPress Plugin Vulnerabilities

Autotitle for WordPress <= 1.0.3 - Settings Update to Stored XSS via CSRF

Description

The plugin does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack.

Proof of Concept

Affects Plugins

Plugin icon
autotitle-for-wordpress
No known fix

References

CVE
CVE-2023-6946
URL
https://magos-securitas.com/txt/CVE-2023-6946

Classification

Type
CSRF
OWASP top 10
A2: Broken Authentication and Session Management
CWE
CWE-352
CVSS
7.1 (high)

Miscellaneous

Original Researcher
Daniel Ruf
Submitter
Daniel Ruf
Submitter website
https://magos-securitas.com
Verified
Yes
WPVDB ID
54a00416-c7e3-44f3-8dd2-ed9e748055e6

Timeline

Publicly Published
2024-01-02 (about 1 year ago)
Added
2024-01-02 (about 1 year ago)
Last Updated
2024-01-02 (about 1 year ago)

Other

Published
Title
Published
2024-04-26
Title
Contact Form 7 Extension For Mailchimp < 0.9.19 - Cross-Site Request Forgery
Published
2025-01-16
Title
Twitter Post <= 0.1 - Cross-Site Request Forgery to Stored Cross-Site Scripting
Published
2024-08-26
Title
WP Armour Extended < 1.32 - Cross-Site Request Forgery
Published
2024-12-11
Title
GitSync <= 1.1.0 - Cross-Site Request Forgery to Remote Code Execution
Published
2021-08-16
Title
Rucy <= 0.4.4 - Cross-Site Request Forgery