How it works Pricing

Vulnerabilities

WordPress Plugins Themes Stats Submit vulnerabilities

For developers

Status API details CLI scanner

WordPress Plugin Vulnerabilities

Business Hours Indicator < 2.3.5 - Admin+ Stored Cross-Site Scripting

Description

The plugin does not sanitise or escape its 'Now closed message" setting when outputting it in the backend and frontend, leading to an Authenticated Stored Cross-Site Scripting issue

Proof of Concept

Put the following payload in the "Now closed message" setting and save them: <script>alert(/XSS/)</script>

Then refresh the setting page, or go to a page where the Business Hours are output (tested with the [mbhi ..] shortcode) to trigger the XSS

Affects Plugins

business-hours-indicator

Fixed in version 2.3.5

References

CVE

URL

https://www.hackpertise.com/cve/28-cve-2021-36848/

Classification

Type

XSS

OWASP top 10

A7: Cross-Site Scripting (XSS)

CWE

Miscellaneous

Original Researcher

Asif Nawaz Minhas

Submitter

Asif Nawaz Minhas

Verified

Yes

WPVDB ID

309296d4-c397-4fc7-85fb-a28b5b5b6a8d

Timeline

Publicly Published

2021-08-02 (about 1 years ago)

Added

2021-08-02 (about 1 years ago)

Last Updated

2022-08-02 (about 7 months ago)

Our Other Services

WPScan WordPress Security Plugin