WordPress Plugin Vulnerabilities
WP24 Domain Check < 1.6.3 - Authenticated Stored Cross-Site Scripting (XSS)
Description
The plugin version 1.6.2 and possibly below, was vulnerable to Stored Cross-Site Scripting (XSS) in the plugin's fieldnameDomain settings parameter.
The form did require a valid CSRF nonce, limiting the exploitability of the vulnerability.
Proof of Concept
In the plugin's advanced settings (wp-admin/options-general.php?page=wp24_domaincheck_settings&tab=advanced), put the following payload in the Domain fieldname input: " onfocus=alert(/XSS/); autofocus=
Affects Plugins
References
Exploitdb
Classification
Type
XSS
OWASP top 10
CWE
CVSS
Miscellaneous
Original Researcher
Mehmet Kelepce
Verified
No
WPVDB ID
Timeline
Publicly Published
2021-01-06 (about 3 years ago)
Added
2021-01-11 (about 3 years ago)
Last Updated
2021-01-26 (about 3 years ago)