WordPress Plugin Vulnerabilities

WP-Stats < 2.5.2 - CSRF to Stored Cross-Site Scripting (XSS)

Description

The plugin does not have CSRF check when saving its settings, and did not escape some of them when outputting them, allowing attacker to make logged in high privilege users change them and set Cross-Site Scripting payloads

Affects Plugins

Plugin icon
wp-stats
Fixed in 2.52

References

CVE
CVE-2015-10001
URL
https://www.openwall.com/lists/oss-security/2015/06/17/6

Classification

Type
CSRF
OWASP top 10
A2: Broken Authentication and Session Management
CWE
CWE-352
CVSS
8.8 (high)

Miscellaneous

Original Researcher
Sebastian Wolfgang Kraemer
Submitter
HSASec
Submitter website
https://www.hsasec.de
Submitter twitter
HSASec
Verified
Yes
WPVDB ID
f5c3dfea-7203-4a98-88ff-aa6a24d03734

Timeline

Publicly Published
2015-06-17 (about 8 years ago)
Added
2015-06-17 (about 8 years ago)
Last Updated
2022-04-08 (about 1 years ago)

Other

Published
Title
Published
2023-04-13
Title
Shortlinks by Pretty Links < 3.4.1 - Link Visit Stats Clear via CSRF
Published
2019-06-27
Title
WebP Converter for Media <= 1.0.2 - Cross-Site Request Forgery (CSRF)
Published
2022-04-11
Title
Yoo Slider < 2.1.0 - Arbitrary Slider Creation/Edition via CSRF
Published
2014-08-01
Title
Digg Digg 5.3.4 - Setting Manipulation CSRF
Published
2023-09-04
Title
MyCryptoCheckout < 2.126 - CSRF