vendor:
Yet Another Related Posts Plugin'
by:
7.5
CVSS
HIGH
XSS, RCE
CWE
Product Name: Yet Another Related Posts Plugin'
Affected Version From: <= 4.2.4
Affected Version To:
Patch Exists: YES
Related CWE:
CPE:
Platforms Tested:
Homepage
Yet Another Related Posts Plugin' options can be updated with no token/nonce protection which an attacker may exploit via tricking website's administrator to enter a malformed page which will change YARPP options, and since some options allow html the attacker is able to inject malformed javascript code which can lead to code execution/administrator actions when the injected code is triggered by an admin user. Injected javascript code is triggered on any post page.
Mitigation:
Apply the latest patch or update the plugin to a version above 4.2.4.