WordPress Plugin Vulnerabilities

Admin Columns Free < 4.3 & Pro < 5.5.1 - Admin+ Stored XSS in Label

Description

The plugins do not sanitise and escape its Label settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup)

Affects Plugins

Plugin icon
codepress-admin-columns
Fixed in 4.3
Plugin icon
admin-columns-pro
Fixed in 5.5.1

References

CVE
CVE-2021-24366
URL
https://github.com/codepress/admin-columns/commit/b45571ed21d574d13687213a5002e0c68e4442c7
URL
https://www.whitesourcesoftware.com/vulnerability-database/CVE-2021-24366

Classification

Type
XSS
OWASP top 10
A7: Cross-Site Scripting (XSS)
CWE
CWE-79
CVSS
3.4 (low)

Miscellaneous

Original Researcher
Daniel Elkabes of WhiteSource
Verified
No
WPVDB ID
05427156-4d5c-4aeb-add8-1c574fda5c28

Timeline

Publicly Published
2021-05-31 (about 4 years ago)
Added
2021-06-07 (about 4 years ago)
Last Updated
2023-11-07 (about 2 years ago)

Other

Published
Title
Published
2024-04-05
Title
Salon booking system < 9.6.6 - Editor+ Stored XSS
Published
2024-04-04
Title
Happy Addons for Elementor < 3.10.5 - Authenticated (Contributor+) Stored Cross-Site Scripting via Calendy
Published
2025-04-04
Title
ActiveCampaign < 8.1.17 - Authenticated (Administrator+) Stored Cross-Site Scripting
Published
2025-01-13
Title
Responsive jQuery Slider <= 1.1.1 - Authenticated (Contributor+) Stored Cross-Site Scripting
Published
2025-01-17
Title
JSM Screenshot Machine Shortcode < 3.0.0 - Authenticated (Contributor+) Stored Cross-Site Scripting