PT-2020-13631 · WordPress · Real-Time Find/Replace Plugin

Published

2020-05-28

Updated

2020-05-28

CVE-2020-13641

CVSS v3.1

8.8

High

Vector

AC:L/AV:N/A:H/C:H/I:H/PR:N/S:U/UI:R

Name of the Vulnerable Software and Affected Versions Real-Time Find and Replace plugin versions prior to 4.0.2 for WordPress

Description An issue was discovered in the Real-Time Find and Replace plugin where the far options page function did not perform nonce verification, allowing requests to be forged on behalf of an administrator. This enabled the update of find and replace rules with malicious JavaScript, which could be executed later in the victim's browser.

Recommendations For versions prior to 4.0.2, update to version 4.0.2 or later to resolve the issue. As a temporary workaround, consider disabling the far options page function until a patch is available. Restrict access to the plugin's settings to minimize the risk of exploitation. Avoid using the plugin until the issue is resolved.

Exploit

Fix

CSRF

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-352

Related Identifiers

CVE-2020-13641

Affected Products

Real-Time Find/Replace Plugin

PT-2020-13631 · WordPress · Real-Time Find/Replace Plugin

CVE-2020-13641

Weakness Enumeration

Related Identifiers

Affected Products

References · 5