CSRF vulnerability and missing permission checks in Extended Choice Parameter Plugin allow SSRF
Moderate severity
GitHub Reviewed
Published
Mar 16, 2022
to the GitHub Advisory Database
•
Updated Feb 2, 2023
Package
Affected versions
<= 346.vd87693c5a
Patched versions
None
Description
Published by the National Vulnerability Database
Mar 15, 2022
Published to the GitHub Advisory Database
Mar 16, 2022
Reviewed
Nov 30, 2022
Last updated
Feb 2, 2023
Credits
-
NotMyFault Analyst
Extended Choice Parameter Plugin 346.vd87693c5a_86c and earlier does not perform a permission check on form validation methods. This allows attackers with Overall/Read permission to connect to an attacker-specified URL.
Additionally, these form validation methods do not require POST requests, resulting in a cross-site request forgery (CSRF) vulnerability.
References