WordPress Plugin Vulnerabilities

Frontend Post WordPress Plugin <= 2.8.4 - Contributor+ Arbitrary Redirect

Description

The plugin does not validate an attribute of one of its shortcode, which could allow users with a role as low as contributor to add a malicious shortcode to a page/post, which will redirect users to an arbitrary domain.

Proof of Concept

[ap-form-message redirect="https://wpscan.com"]

Affects Plugins

Plugin icon
accesspress-anonymous-post
No known fix

References

CVE
CVE-2022-4946

Classification

Type
REDIRECT
OWASP top 10
A1: Injection
CWE
CWE-601
CVSS
2.7 (low)

Miscellaneous

Original Researcher
WPScan
Verified
Yes
WPVDB ID
6e222018-a3e0-4af0-846c-6f00b67dfbc0

Timeline

Publicly Published
2023-05-11 (about 1 years ago)
Added
2023-05-11 (about 1 years ago)
Last Updated
2023-05-11 (about 1 years ago)

Other

Published
Title
Published
2022-02-16
Title
Page Builder KingComposer <= 2.9.6 - Open Redirect
Published
2014-06-02
Title
Grimag < 1.1.1 - Open Redirection
Published
2015-03-30
Title
Newsletter 3.7.0 - Open Redirect
Published
2020-11-27
Title
Age Gate < 2.13.5 - Unauthenticated Open Redirect
Published
2018-04-03
Title
WordPress 3.7-4.9.4 - Use Safe Redirect for Login