Inline Google Spreadsheet Viewer <= 0.13.2 – Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode | CVE 2024-3674 | Plugin Vulnerabilities

Description

The Inline Google Spreadsheet Viewer plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'gdoc' shortcode in all versions up to, and including, 0.13.2 due to insufficient input sanitization and output escaping on user supplied attributes such as 'chart_resolution'. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.

Affects Plugins

inline-google-spreadsheet-viewer

No known fix

References

CVE

URL

https://www.wordfence.com/threat-intel/vulnerabilities/id/523e80a5-dffa-4eb6-8f7a-e179e0dc4d28

Classification

Type

XSS

OWASP top 10

A7: Cross-Site Scripting (XSS)

CWE

CVSS

Miscellaneous

Original Researcher

Krzysztof Zając

Verified

No

WPVDB ID

1ae576ec-7a12-4e1c-abfe-76c08ec609cb

Timeline

Publicly Published

2024-04-29 (about 1 year ago)

Added

2024-04-29 (about 1 year ago)

Last Updated

2024-04-29 (about 1 year ago)

Other

Published

Title

Published

2024-03-25

Title

Dracula Dark Mode - The Revolutionary Dark Mode Plugin For WordPress < 1.0.9 - Authenticated (Contributor+) Stored Cross-Site Scripting via shortcode

Published

2022-11-16

Title

Donation Button <= 4.0.0 - Contributor+ Stored XSS

Published

2023-02-14

Title

Ocean Extra < 2.1.3 - Contributor+ Stored XSS

Published

2021-07-26

Title

HD Quiz < 1.8.4 - Authenticated Stored XSS

Published

2022-03-30

Title

Spam protection, AntiSpam, FireWall by CleanTalk < 5.174.1 - Reflected Cross-Site Scripting