CVE-2022-45073 REST API Authentication plugin = 2.4.0 has a CSRF vulnerability.

REST API Authentication plugin is used to protect your WordPress REST API based authentication with username and password. REST API Authentication plugin has a security flaw that can be exploited by hackers to gain access to your WordPress website. REST API Authentication plugin version 2.4.0 and below has a cross-site request forgery (CSRF) vulnerability that can be exploited by hackers to hijack your WordPress website. REST API Authentication plugin is used to protect your WordPress REST API based authentication with username and password. REST API Authentication plugin has a security flaw that can be exploited by hackers to gain access to your WordPress website. REST API Authentication plugin version 2.4.0 and below has a cross-site request forgery (CSRF) vulnerability that can be exploited by hackers to hijack your WordPress website. REST API Authentication plugin is used to protect your WordPress REST API based authentication with username and password. REST API Authentication plugin has a security flaw that can be exploited by hackers to gain access to your WordPress website. REST API Authentication plugin version 2.4.0 and below has a cross-site request forgery (CSRF) vulnerability that can be exploited by hackers to hijack your WordPress website. REST API Authentication plugin is used to protect your WordPress REST API based authentication with username and password

Description of the Security Flaw

The security flaw is related to the use of cookies by REST API Authentication plugin. The flaw can be exploited by hackers to hijack your WordPress website.

What is REST API Authentication?

REST API Authentication plugin is used to protect your WordPress REST API based authentication with username and password. REST API Authentication plugin has a security flaw that can be exploited by hackers to gain access to your WordPress website. REST API Authentication plugin version 2.4.0 and below has a cross-site request forgery (CSRF) vulnerability that can be exploited by hackers to hijack your WordPress website.

Summary of REST API Authentication plugin vulnerability

REST API Authentication plugin is used to protect your WordPress REST API based authentication with username and password. REST API Authentication plugin has a security flaw that can be exploited by hackers to gain access to your WordPress website. REST API Authentication plugin version 2.4.0 and below has a cross-site request forgery (CSRF) vulnerability that can be exploited by hackers to hijack your WordPress website. REST API Authentication plugin is used to protect your WordPress REST API based authentication with username and password. REST API Authentication plugin has a security flaw that can be exploited by hackers to gain access to your WordPress website. REST API Authentication plugin version 2.4.0 and below has a cross-site request forgery (CSRF) vulnerability that can be exploited by hackers to hijack your WordPress website.

Timeline

Published on: 11/18/2022 23:15:00 UTC
Last modified on: 11/22/2022 21:07:00 UTC

References

• https://patchstack.com/database/vulnerability/wp-rest-api-authentication/wordpress-rest-api-authentication-plugin-2-4-0-cross-site-request-forgery-csrf-vulnerability?_s_id=cve
• https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-45073