WP Recipe Maker < 9.1.1 – Contributor+ Stored Cross-Site Scripting via header_tag | CVE 2024-0382 | Plugin Vulnerabilities

Description

The plugin is vulnerable to Stored Cross-Site Scripting via the plugin's shortcode(s) in all versions up to, and including, 9.1.0 due to unrestricted use of the 'header_tag' attribute. This makes it possible for authenticated attackers with contributor-level and above permissions to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.

Affects Plugins

wp-recipe-maker

Fixed in 9.1.1

References

CVE

URL

https://www.wordfence.com/threat-intel/vulnerabilities/id/1f463ed1-06ad-430f-b450-1a73dc54f8a7

Classification

Type

XSS

OWASP top 10

A7: Cross-Site Scripting (XSS)

CWE

CVSS

Miscellaneous

Original Researcher

wesley (wcraft)

Verified

No

WPVDB ID

4940b171-dd38-4651-96c4-13cca28a4f8d

Timeline

Publicly Published

2024-01-17 (about 2 years ago)

Added

2024-01-20 (about 2 years ago)

Last Updated

2024-01-20 (about 2 years ago)

Other

Published

Title

Published

2024-01-31

Title

EventON < 4.4.1 - Reflected Cross-Site Scripting

Published

2022-07-18

Title

mTouch Quiz <= 3.1.3 - Admin+ Stored Cross Site Scripting

Published

2019-08-04

Title

Rencontre < 3.2 - Authenticated Stored XSS via textmail & textanniv Parameters

Published

2024-04-17

Title

Element Pack Elementor Addons < 5.6.1 - Contributor+ Stored XSS via Panel Slider Widget

Published

2017-05-24

Title

AffiliateWP <= 2.0.9 - Authenticated Cross-Site Scripting (XSS)