WordPress Plugin Vulnerabilities
Multiple WebToffee Plugins - Cross-Site Request Forgery (CSRF) Issue
Description
From https://www.wordfence.com/blog/2020/03/vulnerability-patched-in-import-export-wordpress-users/ (at the bottom)
"Several additional WooCommerce-centric import/export plugins from WebToffee used the same import functionality. However, they were unable to be activated unless WooCommerce was installed, ensuring that the manage_woocommerce capability check was sufficient in restricting low-level users from completing imports.
Despite that, there were no nonce checks on these imports, meaning that the source of requests were not verified. If an administrator of a site was tricked into executing an unwanted action, products could be injected, along with comments, orders and more, potentially containing malicious payloads."
Affects Plugins
Fixed in 1.6.1
Fixed in 1.7.5
Fixed in 1.3.1
Fixed in 1.3.3
Fixed in 1.1.9
Fixed in 2.1.11 References
Classification
Type
CSRF
OWASP top 10
CWE
Miscellaneous
Original Researcher
Wordfence
Verified
No
WPVDB ID
Timeline
Publicly Published
2020-03-11 (about 6 years ago)
Added
2020-03-11 (about 6 years ago)
Last Updated
2020-03-13 (about 6 years ago)
WPScan 