WordPress Plugin Vulnerabilities
Popup | Custom Popup Builder < 1.3.1 - Unauthenticated Denial of Service
Description
The plugin autoload data from its popup on every pages, as such data can be sent by unauthenticated user, and is not validated in length, this could cause a denial of service on the blog
Proof of Concept
1) Create a popup (as admin) and access the popup page (as unauthenticated) 2) Send data on the form and intercept the request 3) In the request add a payload called theme_id with any amount of data you want and send it 4) At each pageview the data that was sent will be loaded Complete POC: https://youtu.be/Do0mLUY9t9I
Affects Plugins
Fixed in version 1.3.1
References
Classification
Type
DOS
CWE
Miscellaneous
Original Researcher
Felipe de Avila
Submitter
Felipe de Avila
Verified
Yes
Timeline
Publicly Published
2022-01-17 (about 1 years ago)
Added
2022-01-17 (about 1 years ago)
Last Updated
2022-04-12 (about 9 months ago)