WordPress Plugin Vulnerabilities

WP-Stats < 2.52 - CSRF to Stored Cross-Site Scripting (XSS)

Description

The plugin does not have CSRF check when saving its settings, and did not escape some of them when outputting them, allowing attacker to make logged in high privilege users change them and set Cross-Site Scripting payloads

Affects Plugins

Plugin icon
wp-stats
Fixed in 2.52

References

CVE
CVE-2015-10001
URL
https://www.openwall.com/lists/oss-security/2015/06/17/6

Classification

Type
CSRF
OWASP top 10
A2: Broken Authentication and Session Management
CWE
CWE-352
CVSS
8.8 (high)

Miscellaneous

Original Researcher
Sebastian Wolfgang Kraemer
Submitter
HSASec
Submitter website
https://www.hsasec.de
Submitter twitter
HSASec
Verified
Yes
WPVDB ID
f5c3dfea-7203-4a98-88ff-aa6a24d03734

Timeline

Publicly Published
2015-06-17 (about 8 years ago)
Added
2015-06-17 (about 8 years ago)
Last Updated
2022-04-08 (about 2 years ago)

Other

Published
Title
Published
2023-12-06
Title
Multi Currency For WooCommerce < 1.5.6 - Cross-Site Request Forgery
Published
2023-05-16
Title
Contact Form by Supsystic < 1.7.25 - CSRF
Published
2023-04-24
Title
Side Cart Woocommerce < 2.2 - Settings Reset via CSRF
Published
2024-04-10
Title
Sarada Lite < 1.1.3 - Cross-Site Request Forgery to Notice Dismissal
Published
2014-08-01
Title
User Domain Whitelist 1.4 - user-domain-whitelist.php Domain Whitelisting Manipulation CSRF