Description
The Content Mask WordPress plugin before 1.8.4.1 does not have authorisation and CSRF checks in various AJAX actions, as well as does not validate the option to be updated to ensure it belongs to the plugin. As a result, any authenticated user, such as subscriber could modify arbitrary blog options
Exploits (1)
References (1)
Core 1
Core References
Exploit, Third Party Advisory exploit
vdb-entry
technical-description
https://wpscan.com/vulnerability/3c9969e5-ca8e-4e5d-a482-c6b5c4257820
Scores
CVSS v3
4.3
EPSS
0.0447
EPSS Percentile
89.1%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
Details
CWE
CWE-862
CWE-352
Status
published
Products (1)
content_mask_project/content_mask
< 1.8.4.1
Published
May 30, 2022
Tracked Since
Feb 18, 2026