WP Social Buttons <= 2.2 – Admin+ Stored Cross-Site Scripting | CVE 2022-0874 | Plugin Vulnerabilities

Description

The plugin does not sanitise and escape its settings, allowing high privilege users such as admin to perform cross-Site Scripting attacks even when the unfiltered_html capability is disallowed.

Proof of Concept

Put the following payload in the Delay Time (General Settings) or Top Margin (Advanced Settings) of the plugin: " style=animation-name:rotation onanimationstart=alert(/XSS/)//

Affects Plugins

wp-social-buttons

No known fix

References

CVE

Classification

Type

XSS

OWASP top 10

A7: Cross-Site Scripting (XSS)

CWE

CVSS

Miscellaneous

Original Researcher

Niraj Mahajan

Submitter

Niraj Mahajan

Submitter website

https://www.linkedin.com/in/niraj1mahajan/

Submitter twitter

Verified

Yes

WPVDB ID

36cdd130-9bb7-4274-bac6-07d00008d810

Timeline

Publicly Published

2022-04-13 (about 3 years ago)

Added

2022-04-13 (about 3 years ago)

Last Updated

2022-04-19 (about 3 years ago)

Other

Published

Title

Published

2023-11-13

Title

Premmerce Redirect Manager < 1.0.12 - Admin+ Stored XSS

Published

2024-06-12

Title

Himer - Social Questions and Answers < 2.1.1 - Contributor+ Stored XSS

Published

2025-01-16

Title

Site Launcher <= 0.9.4 - Reflected Cross-Site Scripting

Published

2019-04-30

Title

My Calendar <= 3.1.9 - Unauthenticated Cross-Site Scripting (XSS)

Published

2023-10-02

Title

Images Slideshow by 2J <= 1.3.54 - Contributor+ Stored XSS