WordPress Plugin Vulnerabilities

Shortcodes Ultimate < 5.12.1 - Stored XSS via CSRF

Description

The plugin does not have CSRF check when adding a Preset, and is missing sanitisation as well as escaping, which could allow attackers to make logged in admin add Stored XSS payloads in a Preset created via a CSRF attack

Affects Plugins

Plugin icon
shortcodes-ultimate
Fixed in 5.12.1

References

CVE
CVE-2022-41136

Classification

Type
CSRF
OWASP top 10
A2: Broken Authentication and Session Management
CWE
CWE-352
CVSS
6.1 (medium)

Miscellaneous

Original Researcher
Dave Jong
Verified
No
WPVDB ID
56b58468-ade2-498d-9594-22bbe1bc514e

Timeline

Publicly Published
2022-10-12 (about 3 years ago)
Added
2022-11-08 (about 3 years ago)
Last Updated
2022-11-08 (about 3 years ago)

Other

Published
Title
Published
2021-10-18
Title
WP Performance Score Booster < 2.1 - Settings Change via CSRF
Published
2023-11-08
Title
WP Category Post List Widget <= 2.0.3 - Cross-Site Request Forgery via gen_set_page
Published
2014-08-01
Title
Cool Video Gallery 1.8 - admin/gallery-settings.php Gallery Settings Manipulation CSRF
Published
2025-02-18
Title
DeBounce Email Validator < 5.8.1 - Cross-Site Request Forgery to Stored Cross-Site Scripting
Published
2024-01-31
Title
Active Products Tables for WooCommerce. Professional products tables for WooCommerce store < 1.0.6.2 - Cross-Site Request Forgery