Quizlord <= 2.0 – Admin+ Stored XSS | CVE 2022-4112 | Plugin Vulnerabilities

Description

The plugin does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup).

Proof of Concept

1. Go to Quizlord » Add a quiz
2. In the input field 'Title', add the payload - "><script>alert(/XSS/)</script>
3. Click the Save button to see the XSS alert.

Affects Plugins

No known fix

References

CVE

Classification

Type

XSS

OWASP top 10

A7: Cross-Site Scripting (XSS)

CWE

CVSS

Miscellaneous

Original Researcher

Machupalli Sree Pragna

Submitter

Machupalli Sree Pragna

Submitter website

https://www.linkedin.com/in/sreepragna/

Verified

Yes

WPVDB ID

4cbce79d-9b7a-41f5-9c52-08933ea7c28e

Timeline

Publicly Published

2022-11-19 (about 1 years ago)

Added

2022-11-24 (about 1 years ago)

Last Updated

2022-11-24 (about 1 years ago)

Other

Published

Title

Published

2024-05-09

Title

Essential Addons for Elementor – Best Elementor Templates, Widgets, Kits & WooCommerce Builders < 5.9.20 - Contributor+ Stored Cross-Site Scripting via 'Dual Color Header', 'Event Calendar', & 'Advanced Data Table'

Published

2022-09-06

Title

Ketchup Restaurant Reservations <= 1.0.0 - Unauthenticated Stored XSS

Published

2022-01-10

Title

GTranslate < 2.9.7 - Reflected Cross-Site Scripting

Published

2017-06-22

Title

Analytics Tracker < 1.1.1 - XSS

Published

2016-03-29

Title

WP Favorite Posts <= 1.6.5 - Cross-Site Scripting (XSS)