A vulnerability was found in 2by2host Widget Logic Plugin up to 5.10.1 on WordPress (WordPress Plugin). It has been declared as problematic. This vulnerability affects an unknown part of the file widget_logic.php. The manipulation as part of a POST Request leads to a cross-site request forgery vulnerability. The CWE definition for the vulnerability is CWE-352. The web application does not, or can not, sufficiently verify whether a well-formed, valid, consistent request was intentionally provided by the user who submitted the request. As an impact it is known to affect integrity. CVE summarizes:

A Cross-Site-Request-Forgery (CSRF) vulnerability in widget_logic.php in the 2by2host Widget Logic plugin before 5.10.2 for WordPress allows remote attackers to execute PHP code via snippets (that are attached to widgets and then eval'd to dynamically determine their visibility) by crafting a malicious POST request that tricks administrators into adding the code.

The weakness was published 07/01/2019 (Website). The advisory is shared for download at plugins.trac.wordpress.org. This vulnerability was named CVE-2019-12826 since 06/14/2019. The attack can be initiated remotely. No form of authentication is required for a successful exploitation. Successful exploitation requires user interaction by the victim. There are known technical details, but no exploit is available.

By approaching the search of inurl:widget_logic.php it is possible to find vulnerable targets with Google Hacking.

Upgrading to version 5.10.2 eliminates this vulnerability.

Productinfo

Type

• WordPress Plugin

Vendor

• 2by2host

Name

• Widget Logic Plugin

Version

• 5.10.0
• 5.10.1

CPE 2.3info

• 🔍
• 🔍

CPE 2.2info

• 🔍
• 🔍

CVSSv4info

CVSSv3info

CVSSv2info

Exploitinginfo

Threat Intelligenceinfo

Countermeasuresinfo

Timelineinfo

Sourcesinfo

Entryinfo

Discussion