WordPress Plugin Vulnerabilities

WorkScout Core < 1.3.4 - Authenticated Stored XSS & XFS

Description

The plugin, used by the WorkScout Theme did not sanitise the chat messages sent via the workscout_send_message_chat AJAX action, leading to Stored Cross-Site Scripting and Cross-Frame Scripting issues

Proof of Concept

Affects Plugins

Plugin icon
workscout-core
Fixed in 1.3.4

Affects Themes

workscout
Fixed in 2.0.33

References

CVE
CVE-2021-24246
URL
https://m0ze.ru/vulnerability/[2021-02-10]-[WordPress]-[CWE-79]-WorkScout-WordPress-Theme-v2.0.33.txt

Classification

Type
XSS
OWASP top 10
A7: Cross-Site Scripting (XSS)
CWE
CWE-79
CVSS
7.4 (high)

Miscellaneous

Original Researcher
m0ze
Submitter
m0ze
Submitter website
https://m0ze.ru
Submitter twitter
vladm0ze
Verified
Yes
WPVDB ID
2365a9d0-f6f4-4602-9804-5af23d0cb11d

Timeline

Publicly Published
2021-04-08 (about 4 years ago)
Added
2021-04-08 (about 4 years ago)
Last Updated
2021-04-09 (about 4 years ago)

Other

Published
Title
Published
2025-12-12
Title
Livemesh SiteOrigin Widgets < 3.9.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via Hero Header and Pricing Table Widgets
Published
2025-01-06
Title
ARS Affiliate Page Plugin < 2.0.4 - Reflected Cross-Site Scripting
Published
2024-12-19
Title
Category Post Slider <= 1.4 - Authenticated (Contributor+) Stored Cross-Site Scripting
Published
2023-02-28
Title
NEX-Forms < 8.3.3 - Contributor+ Stored XSS
Published
2015-04-20
Title
Updraftplus < 1.9.64 - XSS