WordPress Plugin Vulnerabilities

myCRED < 1.7.8 - Reflected Cross-Site Scripting

Description

The plugin does not sanitise and escape the user parameter before outputting it back in the Points Log admin dashboard, leading to a Reflected Cross-Site Scripting

Proof of Concept

Affects Plugins

Plugin icon
mycred
Fixed in 1.7.8

References

CVE
CVE-2017-20008
URL
https://plugins.trac.wordpress.org/changeset/1639363/mycred

Classification

Type
XSS
OWASP top 10
A7: Cross-Site Scripting (XSS)
CWE
CWE-79
CVSS
8.8 (high)

Miscellaneous

Original Researcher
Jeremie Amsellem
Submitter
Jeremie Amsellem
Submitter website
https://fenrir.pro
Submitter twitter
lp1eu
Verified
Yes
WPVDB ID
3175c56d-27bb-4bf1-b6ba-737541483d40

Timeline

Publicly Published
2017-04-20 (about 8 years ago)
Added
2021-11-24 (about 4 years ago)
Last Updated
2022-04-11 (about 3 years ago)

Other

Published
Title
Published
2021-01-15
Title
Pods < 2.7.27 - Authenticated Stored Cross-Site Scripting (XSS)
Published
2020-01-06
Title
Awesome Support < 6.0.0 - Stored XSS via Ticket Title
Published
2024-11-20
Title
ForumEngine < 1.9 - Reflected Cross-Site Scripting
Published
2024-12-30
Title
HT Event < 1.4.7 - Reflected Cross-Site Scripting
Published
2015-11-17
Title
WooCommerce <= 2.4.8 - Authenticated Cross-Site Scripting (XSS)