Software License Manager < 4.5.0 – Admin+ Stored Cross-Site Scripting

Description

The plugin does not sanitise or escape its License Key Prefix setting before outputting it in the Add/Edit Licenses page, leading to an Authenticated Stored Cross-Site Scripting issue

Proof of Concept

Go the plugin’s settings and add "><script>alert(/XSS/)</script> as a License Key Prefix
Then go the the Add/Edit Licenses page to trigger the XSS

Affects Plugins

software-license-manager

Fixed in 4.5.0

Classification

Type

XSS

OWASP top 10

A7: Cross-Site Scripting (XSS)

CWE

CWE-79

CVSS

3.5 (low)

Miscellaneous

Original Researcher

WPScanTeam

Verified

Yes

WPVDB ID

3dac1598-fb35-4679-822d-edc7cff75ee8

Timeline

Publicly Published

2021-08-31 (about 4 years ago)

Added

2021-08-31 (about 4 years ago)

Last Updated

2021-08-31 (about 4 years ago)

Other

Published

Title

Published

2024-03-13

Title

Free Downloads WooCommerce < 3.5.8.3 - Authenticated (Contributor+) Stored Cross-Site Scripting

Published

2022-11-27

Title

Download Manager < 3.2.60 - Reflected XSS

Published

2021-09-06

Title

UsersWP < 1.2.2.29 - Reflected Cross-Site Scripting

Published

2020-05-04

Title

wpForo < 1.7.0 - Reflected Cross-Site Scripting (XSS) via User Agent

Published

2023-10-31

Title