WordPress Plugin Vulnerabilities

WPSchoolPress < 2.1.17 - Multiple Admin+ Stored Cross-Site Scripting

Description

The plugin sanitise some fields using sanitize_text_field() but does not escape them before outputting in attributes, resulting in Stored Cross-Site Scripting issues.

Proof of Concept

Affects Plugins

Plugin icon
wpschoolpress
Fixed in 2.1.17

References

CVE
CVE-2021-24664

Classification

Type
XSS
OWASP top 10
A7: Cross-Site Scripting (XSS)
CWE
CWE-79
CVSS
3.5 (low)

Miscellaneous

Original Researcher
Davide Taraschi
Submitter
Davide Taraschi
Submitter website
http://davidet.altervista.org
Verified
Yes
WPVDB ID
3f8e170c-6579-4b1a-a1ac-7d93da17b669

Timeline

Publicly Published
2021-10-11 (about 4 years ago)
Added
2021-10-11 (about 4 years ago)
Last Updated
2022-04-08 (about 3 years ago)

Other

Published
Title
Published
2020-04-05
Title
Car Rental System <= 1.3 - Unauthenticated Stored Cross-Site Scripting (XSS)
Published
2025-08-22
Title
tli.tl auto Twitter poster <= 3.4 - Authenticated (Administrator+) Stored Cross-Site Scripting
Published
2024-05-31
Title
Google CSE <= 1.0.7 - Authenticated (Admin+) Stored Cross-Site Scripting
Published
2024-08-26
Title
SKT Blocks – Gutenberg based Page Builder < 1.7 - Contributor+ Stored XSS
Published
2023-02-02
Title
Usersnap < 4.17 - Admin+ Stored XSS