WordPress Plugin Vulnerabilities

Uncanny Toolkit for LearnDash < 3.6.4.2 - Cross-Site Request Forgery (CSRF)

Description

The plugin does not protect its wp_ajax_auto_plugin_install action against CSRF attacks, allowing an unauthenticated attacker to install or activate arbitrary plugins by tricking a logged in administrator to submit a crafted request.

Affects Plugins

Plugin icon
uncanny-learndash-toolkit
Fixed in 3.6.4.2

References

CVE
CVE-2023-23714
URL
https://patchstack.com/database/vulnerability/uncanny-learndash-toolkit/wordpress-uncanny-toolkit-for-learndash-plugin-3-6-4-1-cross-site-request-forgery-csrf-vulnerability

Classification

Type
CSRF
OWASP top 10
A2: Broken Authentication and Session Management
CWE
CWE-352
CVSS
8.8 (high)

Miscellaneous

Original Researcher
Lana Codes
Verified
No
WPVDB ID
791c499e-0920-43dd-b031-537390d1a867

Timeline

Publicly Published
2023-01-27 (about 3 years ago)
Added
2023-05-29 (about 2 years ago)
Last Updated
2023-06-01 (about 2 years ago)

Other

Published
Title
Published
2025-04-09
Title
REVE Chat <= 6.4.4 - Stored XSS via CSRF
Published
2025-11-20
Title
AuthorSure <= 2.3 - Cross-Site Request Forgery to Stored Cross-Site Scripting
Published
2023-07-04
Title
WebwinkelKeur < 3.25 - Cross-Site Request Forgery
Published
2025-01-16
Title
Custom Post <= 1.0 - Cross-Site Request Forgery to Stored Cross-Site Scripting
Published
2025-01-16
Title
Auto FTP <= 1.0.1 - Cross-Site Request Forgery to Stored Cross-Site Scripting