WordPress Plugin Vulnerabilities

Progress Bar < 2.2.2 - Contributor+ Stored XSS

Description

The plugin does not validate and escape some of its shortcode attributes before reflecting them back into the page, which could allow users with a role as low as a contributor to perform Stored Cross-Site Scripting attacks, which could be used against high-privilege users such as admins.

Affects Plugins

Plugin icon
progress-bar
Fixed in 2.2.2

References

CVE
CVE-2023-23699
URL
https://patchstack.com/database/vulnerability/progress-bar/wordpress-progress-bar-plugin-2-1-6-cross-site-scripting-xss-vulnerability
URL
https://www.wordfence.com/threat-intel/vulnerabilities/wordpress-plugins/progress-bar/progress-bar-216-authenticated-contributor-stored-cross-site-scripting-via-wppb-shortcode

Classification

Type
XSS
OWASP top 10
A7: Cross-Site Scripting (XSS)
CWE
CWE-79
CVSS
6.5 (medium)

Miscellaneous

Original Researcher
yuyudhn
Verified
No
WPVDB ID
0f730173-4a57-4116-8046-d2cb4ec5bd65

Timeline

Publicly Published
2023-04-24 (about 3 years ago)
Added
2023-05-30 (about 2 years ago)
Last Updated
2023-05-30 (about 2 years ago)

Other

Published
Title
Published
2024-05-22
Title
Prime Slider < 3.14.2 - Contributor+ Stored XSS via Pagepiling Widget
Published
2024-10-08
Title
Embed PDF Viewer < 2.4.5 - Authenticated (Contributor+) Stored Cross-Site Scripting via height and width Parameters
Published
2022-08-25
Title
Poll, Survey, Questionnaire and Voting system <= 1.7.4 - Admin+ Stored XSS
Published
2023-01-04
Title
Insert Pages < 3.7.5 - Contributor+ Stored XSS
Published
2024-11-05
Title
Event Post < 5.9.7 - Authenticated (Contributor+) Stored Cross-Site Scripting via events_cal Shortcode