CVE-2022-0952
Sitemap by click5 < 1.0.36 - Unauthenticated Arbitrary Options Update
Vexday Risk Score
23Low
SSVC decision (CISA)
Attend
PoC available → attend closely
CVSS —EPSS 13.3%KEV nãoPoC —Nuclei simMetasploit —Patch —
Lifecycle
02 May 2022Published on NVD
Recommendation: Plan a near-term fix — a public PoC already exists.
The Sitemap by click5 WordPress plugin before 1.0.36 does not have authorisation and CSRF checks when updating options via a REST endpoint, and does not ensure that the option to be updated belongs to the plugin. As a result, unauthenticated attackers could change arbitrary blog options, such as the users_can_register and default_role, allowing them to create a new admin account and take over the blog.
Affected products
Unknown · Sitemap by click5Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →