WordPress Plugin Vulnerabilities

Kunze Law < 2.1 - Admin+ Stored Cross-Site Scripting

Description

The plugin does not escape its 'E-Mail Error "From" Address' settings, allowing high privilege users such as admin to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed

Proof of Concept

Put the following payload in the 'E-Mail Error "From" Address' settings of the plugin: "autofocus onfocus=alert(/XSS/) b=

Affects Plugins

kunze-law

Fixed in version 2.1

References

CVE

CVE-2022-0674

Classification

Type

XSS

OWASP top 10

A7: Cross-Site Scripting (XSS)

CWE

CWE-79

Miscellaneous

Original Researcher

fuzzyap1

Submitter

fuzzyap1

Verified

Yes

WPVDB ID

332e1e1e-7420-4605-99bc-4074e212ff9b

Timeline

Publicly Published

2022-02-17 (about 1 years ago)

Added

2022-02-17 (about 1 years ago)

Last Updated

2022-04-13 (about 11 months ago)

Our Other Services

WPScan WordPress Security Plugin