Login

Tag Archives: Cross-Site Request Forgery (CSRF)/Local File Inclusion (LFI)

5 Apr 2022

Vulnerability Details: CSRF/Local File Inclusion (LFI) in Herd Effects and Hover Effects

One way we help to improve the security of WordPress plugins, not just for our customers of our service, but for everyone using them, is our proactive monitoring of changes made to plugins in the Plugin Directory to try to catch serious vulnerabilities. Through that, we caught a variant of those vulnerabilities, a cross-site request forgery (CSRF)/local file inclusion (LFI), being fixed in the plugin Hover Effects. The same issue was also fixed in another plugin by the same developer, Herd Effects. We didn’t catch the latter being addressed, but we have now updated our tools to catch that instance of this as well.

[Read more]

23 Mar 2022

Vulnerability Details: CSRF/Local File Inclusion (LFI) in Amministrazione Aperta

Earlier today, a report was released claiming there was a local file inclusion (LFI) vulnerability in the WordPress plugin Amministrazione Aperta. While the “vulnerable code” shown looks like it could permit local file inclusion (LFI), the proof of concept doesn’t work.

[Read more]

4 Feb 2022

Authenticated Local File Inclusion (LFI) Vulnerability in Transposh Translation Filter

While we were attempting to test to see if the WordPress plugin Transposh Translation Filter was susceptible to another vulnerability, we stumbled across an authenticated local file inclusion vulnerability in the plugin, which can also be exploited through cross-site request forgery (CSRF).

What led to that, was this comment on support forum topic for the plugin: [Read more]

30 Jun 2021

Our Proactive Monitoring Caught a CSRF/Local File Inclusion (LFI) Vulnerability in Email Marketing Services Integration

One way we help to improve the security of WordPress plugins, not just for our customers of our service, but for everyone using them, is our proactive monitoring of changes made to plugins in the Plugin Directory to try to catch serious vulnerabilities. Through that we caught a cross-site request forgery (CSRF)/local file inclusion (LFI) vulnerability in the plugin Email Marketing Services Integration.

The possibility of this vulnerability is also flagged by our Plugin Security Checker, so you can check plugins you use to see if they might have similar issues with that tool. [Read more]

24 May 2021

While Looking Into One Vulnerability Being Fixed in a WordPress Plugin, We Found Another One

The plugin Side Menu was closed on the WordPress Plugin Directory on Wednesday. On Friday a new version was submitted with the changelog entry “Fixed: Security parameters”. While checking over the vulnerability that was fixed in that version, we found yet another vulnerability still exists in the plugin. That vulnerability being a cross-site request forgery (CSRF)/local file inclusion (LFI) vulnerability.

Based on this vulnerability we have improved our Plugin Security Checker’s detection of LFI vulnerabilities to flag code like the code that is in this plugin. So you can check plugins you use to see if they might have similar issues with that tool. [Read more]

27 Feb 2019

Vulnerability Details: Cross-Site Request Forgery (CSRF)/Local File Inclusion (LFI) in Better Search Replace

The latest version of Better Search Replace has two changelog entries that are security related, one though appears unrelated to a vulnerability, but the other, “Security: Pass template filenames through sanitize_file_name()”, relates to fixing a cross-site request forgery (CSRF)/local file inclusion (LFI) vulnerability.

[Read more]

25 Feb 2019

Vulnerability Details: Cross-Site Request Forgery (CSRF)/Local File Inclusion (LFI) in File Manager

Our proactive monitoring of changes made to plugins in the Plugin Directory to try to catch serious vulnerabilities sometimes catches vulnerabilities in older versions of plugins if changes made related to those happen, as was the case with the plugin File Manager. Recently a tag for an older version of the plugin was removed and that got flagged as possibly containing a local file inclusion (LFI) vulnerability, further checking showed that it could be exploited through cross-site request forgery (CSRF).

[Read more]

14 Jan 2019

Our Proactive Monitoring Caught an Authenticated Local File Inclusion (LFI) Vulnerability in Shortcode Factory

Recently we added checks for possible local file inclusion (LFI) vulnerabilities to our proactive monitoring of changes being made to WordPress plugins to try to catch serious vulnerabilities when they are introduced in to plugins and considering the state of security of WordPress plugins in probably isn’t surprising we already caught another vulnerability of that type. Specifically we caught an authenticated local file inclusion (LFI) vulnerability in Shortcode Factory, which could also be exploited through cross-site request forgery (CSRF). The vulnerability had been in the plugin for nearly four years without getting noticed before.

Our Plugin Security Checker will alert you if plugins you use possibly contain the same type vulnerable code (and possibly contain more serious vulnerable code). From there if you are a paying customer of our service you can suggest/vote for it to receive a security review that will check over that or you can order the same type of review separately. [Read more]