WordPress Plugin Vulnerabilities

Business Directory Plugin < 5.11.2 - Arbitrary Payment History Update

Description

The plugin suffered from a Cross-Site Request Forgery issue, allowing an attacker to make a logged in administrator update arbitrary payment history, such as change their status (from pending to completed to example)

Proof of Concept

Affects Plugins

Plugin icon
business-directory-plugin
Fixed in 5.11.2

References

CVE
CVE-2021-24251

Classification

Type
CSRF
OWASP top 10
A2: Broken Authentication and Session Management
CWE
CWE-352
CVSS
4.7 (medium)

Miscellaneous

Original Researcher
0xB9
Submitter
0xB9
Submitter twitter
0xB9sec
Verified
Yes
WPVDB ID
c9911236-4af3-4557-9bc0-217face534e1

Timeline

Publicly Published
2021-04-12 (about 4 years ago)
Added
2021-04-12 (about 4 years ago)
Last Updated
2021-04-14 (about 4 years ago)

Other

Published
Title
Published
2025-01-16
Title
GDReseller <= 1.6 - Cross-Site Request Forgery to Stored Cross-Site Scripting
Published
2022-04-11
Title
eRoom < 1.3.8 - Sync Meetings via CSRF
Published
2024-01-09
Title
Seraphinite Alternative Slugs Manager < 1.4 - Cross-Site Request Forgery
Published
2023-03-30
Title
Premmerce Redirect Manager < 1.0.11 - Cross-Site Request Forgery
Published
2023-10-25
Title
DeepL Pro API translation < 2.4.1.2 - Log Pruning via CSRF