Description
WordPress Plugin AMP for WP-Accelerated Mobile Pages is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently make administrative changes to a website (update the plugin's settings, download/read/upload files, inject Posts, etc). WordPress Plugin AMP for WP-Accelerated Mobile Pages version 0.9.97.19 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 0.9.97.20 or latest
References
https://gist.github.com/sybrew/eb8533c5031bd749f0c6f55f114ab70f
https://www.webarxsecurity.com/amp-plugin-vulnerability/
https://www.wordfence.com/blog/2018/11/xss-injection-campaign-exploits-wordpress-amp-plugin/
https://ampforwp.com/explaining-the-this-plugin-was-closed-situation/
https://plugins.svn.wordpress.org/accelerated-mobile-pages/trunk/changelog.txt
Related Vulnerabilities
TYPO3 Improper Input Validation Vulnerability (CVE-2012-1608)
WordPress Plugin Backup and Staging by WP Time Capsule PHP Object Injection (1.21.9)
WordPress Plugin Social Sharing-Sassy Social Share Cross-Site Scripting (3.3.39)
WordPress Plugin Imsanity Unspecified Vulnerability (2.3.3)
Envoy Proxy Excessive Iteration Vulnerability (CVE-2021-32778)