WordPress TinyMCE Advanced Plugin 'options-general.php' Cross Site Request Forgery Vulnerability

Bugtraq ID:	69746
Class:	Input Validation Error
CVE:
Remote:	Yes
Local:	No
Published:	Sep 08 2014 12:00AM
Updated:	Sep 08 2014 12:00AM
Credit:	Voxel@Night
Vulnerable:	WordPress TinyMCE Advanced 4.1
Not Vulnerable:

WordPress TinyMCE Advanced Plugin 'options-general.php' Cross Site Request Forgery Vulnerability

The TinyMCE Advanced plugin for WordPress is prone to a cross-site request-forgery vulnerability.

An attacker can exploit the cross-site request forgery issue to perform unauthorized actions in the context of a logged-in user of the affected application. This may aid in other attacks.

TinyMCE Advanced 4.1 is vulnerable; other versions may also be affected.

WordPress TinyMCE Advanced Plugin 'options-general.php' Cross Site Request Forgery Vulnerability

To exploit this issue an attacker must entice an unsuspecting victim to open a malicious URI.

The following proof-of-concept is available:

• /data/vulnerabilities/exploits/69746.html.txt

WordPress TinyMCE Advanced Plugin 'options-general.php' Cross Site Request Forgery Vulnerability

Solution:
Currently, we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].

WordPress TinyMCE Advanced Plugin 'options-general.php' Cross Site Request Forgery Vulnerability

References:

• WordPress HomePage (WordPress)
  
• WordPress Plugin Vulnerability Dump - Part 2 (SecLists.Org)
  
• WordPress TinyMCE Advanced Plugin Home Page (WordPress)