WP DB Booster WordPress Plugin Cross-Site Request Forgery Vulnerability

A Cross-Site Request Forgery (CSRF) vulnerability has been identified in the WP DB Booster plugin for WordPress, affecting all versions through 1.0.1. The vulnerability arises from a lack of nonce validation on the 'cleanup_all' AJAX action, allowing unauthenticated attackers to delete various database records, such as post drafts, revisions, comments, and metadata. This could be achieved by tricking a site administrator into clicking a link that sends a forged request.

Impact

Exploitation of this vulnerability could lead to unauthorized deletion of database records, including posts, comments, and associated metadata.

Reproduction

To reproduce this vulnerability, an attacker must exploit the 'cleanup_all' AJAX action without proper nonce validation. This can be done by sending a forged request that tricks an administrator into deleting database records. The absence of nonce validation allows the request to be processed as if it were a legitimate action by the administrator.