Export All URLs < 4.3 - Private/Draft Post/Page Title Disclosure via CSRF
CVE-2022-0914

6.5MEDIUM

Key Information:

Vendor: Wordpress
Status: Export All Urls
Vendor: CVE Published:; 11 April 2022

Summary

The Export All URLs WordPress plugin before 4.3 does not have CSRF in place when exporting data, which could allow attackers to make a logged in admin export all posts and pages (including private and draft) into an arbitrary CSV file, which the attacker can then download and retrieve the list of titles for example

Affected Version(s)

Export All URLs 4.3

References

https://wpscan.com/vulnerability/c328be28-75dd-43db-a5b9-...

x_refsource_MISC

CVSS V3.1

Score:

6.5

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
Apr 11, 2022
Vulnerability Reserved
Mar 10, 2022

Credit

Asif Nawaz Minhas