CVE-2022-2312

Published: Aug 22, 2022Modified: Nov 21, 2024

5.4

Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

Exploitability: 2.3 / Impact: 2.7

Source: NVD

Description

The Student Result or Employee Database WordPress plugin before 1.7.5 does not have CSRF in its AJAX actions, allowing attackers to make logged in user with a role as low as contributor to add/edit and delete students via CSRF attacks. Furthermore, due to the lack of sanitisation and escaping, it could also lead to Stored Cross-Site scripting

Affected (1)

Products: Student Result Or Employee Database Project: Student Result Or Employee Database

Student Result Or Employee Database Project

1 product

Student Result Or Employee Database

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Student Result Or Employee Database Project Student Result Or Employee Database	Before 1.7.5

Related CWEs

Cross-Site Request Forgery (CSRF)

The web application does not, or can not, sufficiently verify whether a well-formed, valid, consistent request was intentionally provided by the user who submitted the request.

Authorization Bypass Through User-Controlled Key

The system's authorization functionality does not prevent one user from gaining access to another user's data or record by modifying the key value identifying the data.

References (2)

https://wpscan.com/vulnerability/7548c1fb-77b5-4290-a297-35820edfe0f8

Source: contact@wpscan.com

ExploitThird Party Advisory

https://wpscan.com/vulnerability/7548c1fb-77b5-4290-a297-35820edfe0f8

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitThird Party Advisory

Timeline

No history available yet.