WordPress Plugin Vulnerabilities

WordPress + Microsoft Office 365 < 15.4 - Unauthenticated Stored Cross-Site Scripting

Description

The plugin does not sanitise error descriptions before outputting them in the log notice, which could allow unauthenticated users to perform Cross-Site Scripting attacks against a logged in administrator

Proof of Concept

Affects Plugins

Plugin icon
wpo365-login
Fixed in 15.4

References

CVE
CVE-2021-43409
URL
https://appcheck-ng.com/wordpress-microsoft-office-365-azure-ad-login-persistent-cross-site-scripting/

Classification

Type
XSS
OWASP top 10
A7: Cross-Site Scripting (XSS)
CWE
CWE-79
CVSS
9.6 (critical)

Miscellaneous

Original Researcher
Gary O’Leary-Steele
Verified
No
WPVDB ID
52a4798c-e915-473c-a352-d671617a87f7

Timeline

Publicly Published
2021-10-15 (about 4 years ago)
Added
2021-10-15 (about 4 years ago)
Last Updated
2022-04-15 (about 4 years ago)

Other

Published
Title
Published
2025-05-14
Title
Bon Toolkit <= 1.3.2 - Authenticated (Contributor+) Stored Cross-Site Scripting
Published
2024-03-16
Title
WooThumbs for WooCommerce by Iconic < 5.5.4 - Reflected Cross-Site Scripting
Published
2020-04-05
Title
Car Rental System <= 1.3 - Unauthenticated Stored Cross-Site Scripting (XSS)
Published
2025-08-07
Title
User Language Switch <= 1.6.10 - Reflected Cross-Site Scripting
Published
2024-12-19
Title
Ledenbeheer < 2.1.1 - Authenticated (Contributor+) Stored Cross-Site Scripting