WPScan
How it worksPricing
Vulnerabilities
WordPressPluginsThemesStatsSubmit vulnerabilities
For developers
StatusAPI detailsCLI scanner
Contact

WordPress Plugin Vulnerabilities

Smash Balloon Social Post Feed < 4.0.1 - Subscriber+ Arbitrary Plugin Settings Update to Stored XSS

Description

The plugin did not have any privilege or nonce validation before saving the plugin's setting. As a result, any logged-in user on a vulnerable site could update the settings and store rogue JavaScript on each of its posts and pages.

Affects Plugins

custom-facebook-feed
Fixed in version 2.19.2

References

CVE
CVE-2021-24918
URL
https://jetpack.com/2021/10/29/security-issues-patched-in-smash-balloon-social-post-feed-plugin/

Classification

Type

ACCESS CONTROLS

OWASP top 10
A5: Broken Access Control
CWE
CWE-284

Miscellaneous

Original Researcher

Marc Montpas

Submitter

Marc Montpas (Jetpack Scan)

Submitter website
https://jetpack.com/
Submitter twitter
marcS0H
Verified

Yes

WPVDB ID
5d252ad7-bf28-44f3-8cd0-c4fe05c48f35

Timeline

Publicly Published

2021-10-29 (about 11 months ago)

Added

2021-10-29 (about 11 months ago)

Last Updated

2022-04-08 (about 5 months ago)

Our Other Services

WPScan WordPress Security Plugin