WordPress Plugin Vulnerabilities

wpForo Forum <= 1.4.11 - Unauthenticated Reflected Cross-Site Scripting (XSS)

Description

Version 1.4.11, and below, of the wpForo Forum WordPress Plugin were found to be vulnerable to Reflected Cross-Site Scripting (XSS). The vulnerability was due to the Plugin using the $_SERVER['REQUEST_URI'] PHP variable to create a URL string that was later output within HTML without any output encoding.

Proof of Concept

Affects Plugins

Plugin icon
wpforo
Fixed in 1.4.12

References

CVE
CVE-2018-11709

Classification

Type
XSS
OWASP top 10
A7: Cross-Site Scripting (XSS)
CWE
CWE-79
CVSS
6.1 (medium)

Miscellaneous

Submitter
Ryan
Submitter twitter
ethicalhack3r
Verified
No
WPVDB ID
356cb307-95a5-46ff-9321-fa56d15143cd

Timeline

Publicly Published
2018-06-01 (about 7 years ago)
Added
2018-06-01 (about 7 years ago)
Last Updated
2020-09-22 (about 5 years ago)

Other

Published
Title
Published
2026-02-17
Title
InteractiveCalculator for WordPress < 1.0.4 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'id' Shortcode Attribute
Published
2023-04-19
Title
WP-dTree <= 4.4.5 - Admin+ Stored XSS
Published
2023-12-16
Title
Image horizontal reel scroll slideshow < 13.4 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode
Published
2023-02-02
Title
EZP Coming Soon Page < 1.0.7.4 - Admin+ Stored XSS
Published
2023-05-16
Title
Photo Gallery by Ays < 5.1.7 - Reflected XSS