WordPress Plugin Vulnerabilities

LabTools <= 1.0 - Subscriber+ Arbitrary Publication Deletion

Description

The plugin does not have proper authorisation and CSRF check in place when deleting publications, allowing any authenticated users, such as subscriber to delete arbitrary publication

Proof of Concept

The PoC will be displayed once the issue has been remediated

Affects Plugins

labtools

No known fix - plugin closed

References

CVE

CVE-2021-25097

Classification

Type

ACCESS CONTROLS

OWASP top 10

A5: Broken Access Control

CWE

CWE-284

Miscellaneous

Original Researcher

Muhammad Adel

Submitter

Muhammad Adel

Submitter website

https://itsfading.github.io

Submitter twitter

ItsFadinG_

Verified

Yes

WPVDB ID

67f5beb8-2cb0-4b43-87c7-dead9c005f9c

Timeline

Publicly Published

2021-12-28 (about 1 years ago)

Added

2021-12-28 (about 1 years ago)

Last Updated

2022-04-16 (about 9 months ago)

Our Other Services

WPScan WordPress Security Plugin