WooCommerce Green Wallet Gateway < 1.0.2 – Reflected Cross Site Scripting in checkout page | CVE 2022-1673 | Plugin Vulnerabilities

Description

The plugin does not escape the error_envision query parameter before outputting it to the page, leading to a Reflected Cross-Site Scripting vulnerability.

Proof of Concept

1. Enable greenwallet-gateway as a woocommerce payment gateway
2. add something in your cart and visit the checkout page
3. visit website/checkoutpage/?error_envision=<script>alert(1)</script>

Affects Plugins

greenwallet-gateway

Fixed in 1.0.2

References

CVE

Classification

Type

XSS

OWASP top 10

A7: Cross-Site Scripting (XSS)

CWE

CVSS

Miscellaneous

Original Researcher

goodguyandy

Submitter

Andrea

Verified

Yes

WPVDB ID

14283389-a6b8-4dd8-9441-f16fcc4ab3c0

Timeline

Publicly Published

2022-05-11 (about 2 years ago)

Added

2022-05-11 (about 2 years ago)

Last Updated

2022-05-12 (about 2 years ago)

Other

Published

Title

Published

2024-04-15

Title

Easy Textillate <= 2.02 - Authenticated(Contributor+) Stored Cross-Site Scripting

Published

2023-11-24

Title

Community by PeepSo < 6.2.7.0 - Reflected Cross-Site Scripting

Published

2021-10-11

Title

Qwizcards < 3.62 - Admin+ Stored Cross Site Scripting

Published

2022-08-01

Title

Social Slider Feed < 2.0.5 - Subscriber+ Stored XSS via Feeds

Published

2023-10-16

Title

Lava Directory Manager <= 1.1.34 - Unauthenticated Stored XSS