Shopwarden WooCommerce Plugin Cross-Site Request Forgery Vulnerability

A Cross-Site Request Forgery (CSRF) vulnerability has been identified in the Shopwarden – Automated WooCommerce monitoring & testing plugin for WordPress, affecting all versions through 1.0.11. The vulnerability arises from inadequate nonce validation in the save_setting() function, allowing unauthenticated attackers to update arbitrary options. This could lead to privilege escalation if an attacker tricks a site administrator into clicking a link that triggers the forged request.

Impact

Exploitation of this vulnerability allows for Cross-Site Request Forgery attacks, enabling unauthorized users to perform actions on behalf of authenticated users, potentially leading to privilege escalation.

Reproduction

To reproduce this vulnerability, an attacker must exploit the save_setting() function, which lacks proper nonce validation. This can be done by sending a forged request to update options, while convincing an administrator to click a link that triggers the request.

Remediation

Users are advised to update the Shopwarden WooCommerce plugin to version 1.0.12 or later.