illi Link Party! <= 1.0 – Admin+ Stored Cross-Site Scripting | CVE 2023-7230

Description

The plugin does not sanitize and escape some parameters, which could allow users with a role as low as admin to perform Cross-Site Scripting attacks.

Proof of Concept

1. Go to "Settings > Link Party!".
2. Under "Add a New Party", enter the payload for either the "Party Name" or "Party Description": "><script>alert(1)</script>
3. Save and see the XSS.

Affects Plugins

link-party

No known fix

References

CVE

CVE-2023-7230

Classification

Type

XSS

OWASP top 10

A7: Cross-Site Scripting (XSS)

CWE

CWE-79

CVSS

3.5 (low)

Miscellaneous

Original Researcher

Bob Matyas

Submitter

Bob Matyas

Submitter website

https://www.bobmatyas.com

Submitter twitter

bobmatyas

Verified

Yes

WPVDB ID

402e428b-f966-4a36-ace0-d0ded9410b1d

Timeline

Publicly Published

2024-01-23 (about 1 year ago)

Added

2024-01-23 (about 1 year ago)

Last Updated

2024-01-23 (about 1 year ago)

Other

Published

Title

Published

2021-04-13

Title

PowerPack Addons for Elementor < 2.3.2 - Contributor+ Stored XSS

Published

2023-10-27

Title

Seraphinite Accelerator < 2.2.29 - Reflected XSS

Published

2017-01-16

Title

Event Notifier < 1.2.1 - XSS

Published

2021-09-07

Title

WP Sitemap Page < 1.7.0 - Admin+ Stored Cross Site Scripting

Published

2024-04-25

Title

WP Portfolio < 2.5 - Authenticated (Contributor+) Stored Cross-Site Scripting