Back to KEVs

CVE-2022-0952

Sitemap by click5 < 1.0.36 - Unauthenticated Arbitrary Options Update

Basic Information

CVE State
PUBLISHED
Reserved Date
March 14, 2022
Published Date
May 02, 2022
Last Updated
August 02, 2024
Vendor
click5
Product
Sitemap by click5
Description
The Sitemap by click5 WordPress plugin before 1.0.36 does not have authorisation and CSRF checks when updating options via a REST endpoint, and does not ensure that the option to be updated belongs to the plugin. As a result, unauthenticated attackers could change arbitrary blog options, such as the users_can_register and default_role, allowing them to create a new admin account and take over the blog.
Tags
wordpress nuclei_scanner

CVSS Scores

CVSS v3.1

8.8 - HIGH

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CVSS v2.0

6.8

Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P

EPSS Score

Score
83.83% (Percentile: 99.23%) as of 2025-06-14

Exploit Status

Exploited in the Wild
Yes (2025-05-31 00:00:00 UTC) Source

References

https://wpscan.com/vulnerability/0f694961-afab-44f9-846c-e80a0f6c768b

Known Exploited Vulnerability Information

Source Added Date
The Shadowserver (via CIRCL) 2025-06-01 12:01:06 UTC

Scanner Integrations

Scanner URL Date Detected
Nuclei https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2022/CVE-2022-0952.yaml 2025-04-26 00:00:00 UTC

Potential Proof of Concepts

Warning: These PoCs have not been tested and could contain malware. Use at your own risk.

RandomRobbieBF/CVE-2022-0952

Type: github • Created: 2023-08-07 14:28:11 UTC • Stars: 4

Sitemap by click5 < 1.0.36 - Unauthenticated Arbitrary Options Update

Timeline

  • CVE ID Reserved

  • CVE Published to Public

  • Detected by Nuclei

  • Added to KEVIntel