WordPress Plugin Vulnerabilities

Sync iCloud COS < 2.0.1 - Admin+ Stored Cross-Site Scripting

Description

The plugin does not escape some of its settings, allowing high privilege users such as admin to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed

Proof of Concept

Put the following payload in the 本地文件夹 or URL前缀 settings of the plugin: " style=animation-name:rotation onanimationstart=alert(/XSS/) b=

Affects Plugins

sync-qcloud-cos

Fixed in version 2.0.1

References

CVE

CVE-2022-0659

Classification

Type

XSS

OWASP top 10

A7: Cross-Site Scripting (XSS)

CWE

CWE-79

Miscellaneous

Original Researcher

fuzzyap1

Submitter

fuzzyap1

Verified

Yes

WPVDB ID

22dc2661-ba64-49e7-af65-892a617ab02c

Timeline

Publicly Published

2022-02-17 (about 4 months ago)

Added

2022-02-17 (about 4 months ago)

Last Updated

2022-04-13 (about 2 months ago)

Our Other Services

WPScan WordPress Security Plugin