WordPress Plugin Vulnerabilities

Events Rich Snippets for Google <= 1.8 - Cross-Site Request Forgery to Arbitrary Options Update

Description

The Events Rich Snippets for Google plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.8. This is due to missing or incorrect nonce validation on the handleEventSettings() function. This makes it possible for unauthenticated attackers to update arbitrary options which can be leveraged for privilege escalation via a forged request granted they can trick a site administrator into performing an action such as clicking on a link.

Affects Plugins

Plugin icon
rich-snippets-vevents
No known fix

References

CVE
CVE-2023-44478
URL
https://www.wordfence.com/threat-intel/vulnerabilities/id/5beb0f93-baa7-4400-ab40-d63f3430169e

Classification

Type
CSRF
OWASP top 10
A2: Broken Authentication and Session Management
CWE
CWE-352
CVSS
8.8 (high)

Miscellaneous

Original Researcher
Mika
Verified
No
WPVDB ID
ff841851-8fd3-4677-a095-b1b3aff60881

Timeline

Publicly Published
2023-09-28 (about 2 years ago)
Added
2023-11-23 (about 2 years ago)
Last Updated
2023-12-27 (about 2 years ago)

Other

Published
Title
Published
2019-06-03
Title
WP Google Maps <= 7.11.27 - Admin Settings CSRF
Published
2024-10-18
Title
APA Register Newsletter Form <= 1.0.0 - Cross-Site Request Forgery to SQL Injection
Published
2025-01-16
Title
Import Users to MailChimp <= 1.0 - Cross-Site Request Forgery to Stored Cross-Site Scripting
Published
2025-09-22
Title
Findgo < 1.3.60.1 - Cross-Site Request Forgery
Published
2025-04-09
Title
WP Performance Pack <= 2.5.4 - Cross-Site Request Forgery