WordPress Plugin Vulnerabilities

Ninja Forms < 3.4.27.1 - CSRF leading to Arbitrary Plugin Installation

Description

The plugin is affected by a Cross-Site Request Forgery (CSRF) which could allow attackers to make a logged administrator install an arbitrary plugin from the WordPress repository.

Proof of Concept

Affects Plugins

Plugin icon
ninja-forms
Fixed in 3.4.27.1

References

CVE
CVE-2020-36174
URL
https://wpdeeply.com/ninja-forms-before-3-4-27-1-simple-csrf-to-rce/

Classification

Type
CSRF
OWASP top 10
A2: Broken Authentication and Session Management
CWE
CWE-352
CVSS
7.6 (high)

Miscellaneous

Original Researcher
Slavco Mihajloski
Verified
Yes
WPVDB ID
eb25a43e-0db9-4aa5-aad9-319a7b620da4

Timeline

Publicly Published
2020-09-22 (about 5 years ago)
Added
2020-10-08 (about 5 years ago)
Last Updated
2021-01-09 (about 5 years ago)

Other

Published
Title
Published
2025-09-22
Title
WorkScout-Core < 1.7.06 - Cross-Site Request Forgery
Published
2019-06-27
Title
ACF Better Search <= 3.3.0 - Cross-Site Request Forgery (CSRF)
Published
2024-11-01
Title
SmartLink Dynamic URLs < 1.1.1 - Cross-Site Request Forgery to Stored Cross-Site Scripting
Published
2014-08-01
Title
Cool Video Gallery 1.8 - admin/plugin-uninstall.php Plugin Uninstallation CSRF
Published
2024-01-03
Title
WP Social Bookmark Menu <= 1.2 - Settings Update via CSRF