WordPress Plugin Vulnerabilities

WP125 < 1.5.5 - Arbitrary Ad Deletion via CSRF

Description

The plugin does not have CSRF checks in various action, for example when deleting an ad, allowing attackers to make a logged in admin delete them via a CSRF attack

Proof of Concept

https://example.com/wp-admin/admin.php?page=wp125_addedit&deletead=1

Affects Plugins

wp125

Fixed in version 1.5.5

References

CVE

CVE-2021-25073

URL

https://plugins.trac.wordpress.org/changeset/2647594

Classification

Type

CSRF

OWASP top 10

A2: Broken Authentication and Session Management

CWE

CWE-352

Miscellaneous

Original Researcher

Krzysztof Zając

Submitter

Krzysztof Zając

Submitter website

https://kazet.cc/

Verified

Yes

WPVDB ID

922a2037-9b5e-4c94-83d9-99efc494e9e2

Timeline

Publicly Published

2021-12-23 (about 9 months ago)

Added

2021-12-23 (about 9 months ago)

Last Updated

2022-04-10 (about 5 months ago)

Our Other Services

WPScan WordPress Security Plugin