WordPress Plugin Vulnerabilities

VM Backups <= 1.0 - CSRF to Stored Cross-Site Scripting (XSS)

Description

The plugin does not have CSRF checks, allowing attackers to make a logged in user unwanted actions, such as update the plugin's options, leading to a Stored Cross-Site Scripting issue.

Proof of Concept

The PoC will be displayed once the issue has been remediated.

Affects Plugins

Plugin icon
vm-backups
No known fix

References

CVE
CVE-2021-24173

Classification

Type
CSRF
OWASP top 10
A2: Broken Authentication and Session Management
CWE
CWE-352
CVSS
9.6 (critical)

Miscellaneous

Original Researcher
0xB9
Submitter twitter
0xB9sec
Verified
Yes
WPVDB ID
b69ea1bc-3c9b-47d7-a164-c860ee46a9af

Timeline

Publicly Published
2021-03-13 (about 2 years ago)
Added
2021-03-13 (about 2 years ago)
Last Updated
2021-03-15 (about 2 years ago)

Other

Published
Title
Published
2022-05-31
Title
Rotating Posts <= 1.11 - Arbitrary Settings Update to Stored XSS via CSRF
Published
2021-02-08
Title
NextGen Gallery < 3.5.0 - CSRF allows File Upload, Stored XSS, and RCE
Published
2023-11-16
Title
WP Meta and Date Remover < 2.3.1 - Cross-Site Request Forgery via updateSettings
Published
2022-11-22
Title
All-In-One Security < 5.1.1 - Bulk Actions via CSRF
Published
2022-10-20
Title
Avada < 7.8.2 - Arbitrary Plugin Instalation/Activation via CRSF