WordPress.org

Ready to get started?Download WordPress

Forums

Cross-linker
CSRF security issue? (1 post)

  1. Rene Schmidt
    Member
    Posted 3 years ago #

    Hello,

    I think there is a small CSRF security issue in line 774:

    if($_REQUEST['del_word']!='')
    {
    $del_me = $_REQUEST['del_word'];
    $wpdb->query("DELETE FROM $table_name WHERE id = '".$del_me."';");
    $table_name_attrs = $wpdb->prefix . $table_crosslink_attrb;
    $wpdb->query("DELETE FROM $table_name_attrs WHERE id = '".$del_me."';");
    }

    An attacker could trick a logged in Cross-Linker user into deleting all hyperlinked words.

    To fix, add

    check_admin_referer();

    before

    $del_me = $_REQUEST['del_word'];

    Have fun
    http://www.reneschmidt.de/

    http://wordpress.org/extend/plugins/cross-linker/

Topic Closed

This topic has been closed to new replies.

About this Plugin

About this Topic