Description
The WP Meta Sort Posts plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 0.9. This is due to missing or incorrect nonce validation on the top-level included script in msp-options.php. This makes it possible for unauthenticated attackers to change the plugin's msp_loop_file and msp_nav_location settings via a forged request via a forged request granted they can trick a site administrator into performing an action such as clicking on a link.
Published: 2026-06-09
Score: 4.3 Medium
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The WP Meta Sort Posts plugin for WordPress is vulnerable to Cross‑Site Request Forgery (CSRF) in all versions up to and including 0.9. The flaw arises from missing or incorrect nonce validation in msp‑options.php, allowing an unauthenticated user to modify the plugin's msp_loop_file and msp_nav_location settings when an administrator is tricked into submitting a forged request. This can lead to an attacker altering how the plugin displays posts or navigation, potentially disrupting content organization or user experience.

Affected Systems

The affected product is the WP Meta Sort Posts plugin (jasonpitts:WP Meta Sort Posts), all releases with version numbers 0.9 or earlier. Protection is achieved by updating to the latest available plugin release, which addresses the missing nonce validation.

Risk and Exploitability

In terms of risk, the CVSS base score is 4.3, indicating a moderate impact level. Exploitation probability cannot be quantified due to unavailable EPSS data, and the vulnerability is not listed in CISA’s KEV catalog. The attack vector requires an attacker to convince a site administrator to click a malicious link or submit a forged form, after which the attacker can change plugin settings. Consequently, administrative users should be aware of this risk and the plugin should be updated or disabled promptly.

Generated by OpenCVE AI on June 9, 2026 at 05:42 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Update the WP Meta Sort Posts plugin to a version newer than 0.9, which contains the CSRF fix.
  • If an update is not available, disable or uninstall the plugin to eliminate the vulnerability.
  • Ensure that administrative actions on your WordPress site include proper CSRF protection by using nonces or by installing a security plugin that enforces nonce checks on all admin pages.

Generated by OpenCVE AI on June 9, 2026 at 05:42 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Tue, 09 Jun 2026 16:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Tue, 09 Jun 2026 09:15:00 +0000

Type Values Removed Values Added
First Time appeared Jasonpitts
Jasonpitts wp Meta Sort Posts
Wordpress
Wordpress wordpress
Vendors & Products Jasonpitts
Jasonpitts wp Meta Sort Posts
Wordpress
Wordpress wordpress

Tue, 09 Jun 2026 04:45:00 +0000

Type Values Removed Values Added
Description The WP Meta Sort Posts plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 0.9. This is due to missing or incorrect nonce validation on the top-level included script in msp-options.php. This makes it possible for unauthenticated attackers to change the plugin's msp_loop_file and msp_nav_location settings via a forged request via a forged request granted they can trick a site administrator into performing an action such as clicking on a link.
Title WP Meta Sort Posts <= 0.9 - Cross-Site Request Forgery to Plugin Settings Update
Weaknesses CWE-352
References
Metrics cvssV3_1

{'score': 4.3, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N'}

Subscriptions

Jasonpitts Wp Meta Sort Posts
Wordpress Wordpress
cve-icon MITRE

Status: PUBLISHED

Assigner: Wordfence

Published:

Updated: 2026-06-09T16:00:56.214Z

Reserved: 2026-05-19T12:04:11.196Z

Link: CVE-2026-8940

cve-icon Vulnrichment

Updated: 2026-06-09T16:00:52.432Z

cve-icon NVD

Status : Deferred

Published: 2026-06-09T05:16:40.953

Modified: 2026-06-09T13:33:34.393

Link: CVE-2026-8940

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-09T08:56:17Z

Weaknesses