CVE-2023-5537

2023-11-2216:15:13

CWE-352

[email protected]

web.nvd.nist.gov

cve-2023-5537

cross-site request forgery

wordpress

nonce validation

unauthenticated attackers

user meta

CVSS3

4.3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

EPSS

0.001

Percentile

28.6%

JSON

The Delete Usermeta plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.1.2. This is due to missing nonce validation on the delumet_options_page() function. This makes it possible for unauthenticated attackers to remove user meta for arbitrary users via a forged request granted they can trick a site administrator into performing an action such as clicking on a link.

Affected configurations

Nvd

Node

joselazodelete_usermetaRange≤1.1.2wordpress

VendorProductVersionCPE
joselazodelete_usermeta*cpe:2.3:a:joselazo:delete_usermeta:*:*:*:*:*:wordpress:*:*

Vendor	Product	Version	CPE
joselazo	delete_usermeta	*	cpe:2.3:a:joselazo:delete_usermeta::::::wordpress::*

References

plugins.trac.wordpress.org/browser/delete-usermetas/trunk/delete-usermetas.php#L57

plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&old=2979918%40delete-usermetas&new=2979918%40delete-usermetas&sfp_email=&sfph_mail=

www.wordfence.com/threat-intel/vulnerabilities/id/23b46e5b-ce1e-4215-921c-edea7fd6c56a?source=cve