A vulnerability classified as problematic has been found in Portfolio Plugin up to 1.04 on WordPress (WordPress Plugin). Affected is an unknown part of the file wp-admin/options-general.php of the component instagram-portfolio Page. The manipulation with an unknown input leads to a cross-site request forgery vulnerability. CWE is classifying the issue as CWE-352. The web application does not, or can not, sufficiently verify whether a well-formed, valid, consistent request was intentionally provided by the user who submitted the request. This is going to have an impact on integrity. CVE summarizes:

Cross-site request forgery (CSRF) vulnerability in the Portfolio plugin before 1.05 for WordPress allows remote attackers to hijack the authentication of administrators for requests that have unspecified impact via a request to the instagram-portfolio page in wp-admin/options-general.php.

The weakness was released 08/19/2015 (Website). The advisory is available at plugins.trac.wordpress.org. This vulnerability is traded as CVE-2015-6523 since 08/19/2015. The exploitability is told to be easy. It is possible to launch the attack remotely. The exploitation doesn't require any form of authentication. Successful exploitation requires user interaction by the victim. Technical details are known, but there is no available exploit.

By approaching the search of inurl:wp-admin/options-general.php it is possible to find vulnerable targets with Google Hacking.

Upgrading to version 1.05 eliminates this vulnerability.

Productinfo

Type

• WordPress Plugin

Name

• Portfolio Plugin

Version

• 1.04

CPE 2.3info

• 🔍

CPE 2.2info

• 🔍

CVSSv4info

CVSSv3info

CVSSv2info

Exploitinginfo

Threat Intelligenceinfo

Countermeasuresinfo

Timelineinfo

Sourcesinfo

Entryinfo

Discussion