Vulnerabilities and security researches forintuitive-custom-post-order intuitive-custom-post-order

Jun 06, 2024

CVE, Research URL: CVE-2023-1016
Home page URL: Security reports for Intuitive Custom Post Order
Application: Intuitive Custom Post Order
Date: Jun 09, 2023
Research Description: The Intuitive Custom Post Order plugin for WordPress is vulnerable to SQL Injection in versions up to, and including, 3.1.4.1, due to insufficient escaping on the user supplied 'objects' and 'tags' parameters and lack of sufficient preparation in the 'update_options' function as well as the 'refresh' function which runs queries on the same values. This allows authenticated attackers, with administrator permissions, to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database. Note that this attack may only be practical on configurations where it is possible to bypass addslashes due to the database using a nonstandard character set such as GBK.
Affected versions: max 3.1.5.
Status: vulnerable

CVE, Research URL: 380e8535297417013cf4c7f69aeac18c10b8284b
Home page URL: Security reports for Intuitive Custom Post Order
Application: Intuitive Custom Post Order
Date: Jan 25, 2023
Research Description: Intuitive Custom Post Order [intuitive-custom-post-order] < 3.1.4 Intuitive Custom Post Order <= 3.1.3 - Missing Authorization to Authenticated Settings Change The Intuitive Custom Post Order plugin for WordPress is vulnerable to authenticated settings change in versions up to and including 3.1.3 via the 'update-menu-order-sites' AJAX action. This allows authenticated attackers with subscriber privileges or above, to change the order of sites in the sites menu on multisite installations.
Affected versions: max 3.1.4.
Status: vulnerable

CVE, Research URL: CVE-2022-4385
Home page URL: Security reports for Intuitive Custom Post Order
Application: Intuitive Custom Post Order
Date: Feb 21, 2023
Research Description: The Intuitive Custom Post Order WordPress plugin before 3.1.4 does not check for authorization in the update-menu-order ajax action, allowing any logged in user (with roles as low as Subscriber) to update the menu order
Affected versions: max 3.1.4.
Status: vulnerable

CVE, Research URL: CVE-2022-4386
Home page URL: Security reports for Intuitive Custom Post Order
Application: Intuitive Custom Post Order
Date: Feb 21, 2023
Research Description: The Intuitive Custom Post Order WordPress plugin before 3.1.4 lacks CSRF protection in its update-menu-order ajax action, allowing an attacker to trick any user to change the menu order via a CSRF attack
Affected versions: max 3.1.4.
Status: vulnerable

Jun 16, 2026

CVE, Research URL: fb854943a69160d6e51117be558eee05e1b4c200
Home page URL: Security reports for Intuitive Custom Post Order
Application: Intuitive Custom Post Order
Date: -
Research Description: Intuitive Custom Post Order [intuitive-custom-post-order] <= 3.1.3 (unfixed) Intuitive Custom Post Order <= 3.1.3 - Missing Authorization to Authenticated Settings Change The Intuitive Custom Post Order plugin for WordPress is vulnerable to authenticated settings change in versions up to and including 3.1.3 via the 'update-menu-order-tags' AJAX action. This allows authenticated attackers with subscriber privileges or above, to change the order of tags in the tags menu.
Affected versions: max 3.1.3.
Status: vulnerable