WordPress Target Video Easy Publish Plugin Cross-Site Request Forgery Vulnerability

A Cross-Site Request Forgery (CSRF) vulnerability has been identified in the Target Video Easy Publish plugin for WordPress, affecting all versions up to and including 3.8.3. The vulnerability arises from inadequate nonce validation in several functions, allowing unauthenticated attackers to inject malicious scripts through forged requests, provided they can persuade a site administrator to click a link or perform a similar action.

Impact

Exploitation of this vulnerability could lead to unauthorized actions being performed on behalf of a user, potentially allowing for the injection of malicious scripts that could be executed in the context of the user's session.

Reproduction

To reproduce this vulnerability, an attacker must create a forged request that exploits the missing nonce validation in the 'resync_carousel()', 'seek_snapshot()', 'uploaded_cc()', and 'remove_cc()' functions. This can be done by tricking a site administrator into clicking a link that activates the forged request, similar to a phishing attack.

Remediation

Users are advised to update the Target Video Easy Publish plugin to version 3.8.5 or later, where this vulnerability has been addressed.