WordPress Plugin Vulnerabilities

DrawBlog <= 0.90 - Authenticated Stored Cross-Site Scripting (XSS)

Description

The plugin does not sanitise or validate some of its settings before outputting them back in the page, leading to an authenticated stored Cross-Site Scripting issue

Proof of Concept

As admin, put the following payload in the "Checkbox reminder" setting of the plugin: "><script>alert(/XSS/)</script>

Affects Plugins

Plugin icon
drawblog
No known fix

References

CVE
CVE-2021-24479

Classification

Type
XSS
OWASP top 10
A7: Cross-Site Scripting (XSS)
CWE
CWE-79
CVSS
5.5 (medium)

Miscellaneous

Original Researcher
ABISHEIK M
Submitter
ABISHEIK M
Submitter twitter
abisheikmagesh
Verified
Yes
WPVDB ID
5fd2246a-fbd9-4f2a-8b0b-a64c3f91157c

Timeline

Publicly Published
2021-06-28 (about 2 years ago)
Added
2021-06-28 (about 2 years ago)
Last Updated
2022-01-02 (about 2 years ago)

Other

Published
Title
Published
2023-05-05
Title
WPO365 < 1.9.1 - Reflected XSS
Published
2023-03-20
Title
ConvertBox Auto Embed WordPress < 1.0.20 - Contributor+ Stored Cross-Site Scripting
Published
2022-07-18
Title
mTouch Quiz <= 3.1.3 - Admin+ Stored Cross Site Scripting
Published
2023-09-01
Title
Photo Gallery Slideshow & Masonry Tiled Gallery < 1.0.14 - Reflected XSS
Published
2020-01-16
Title
Resim Ara <= 3.0 - Unauthenticated Reflected XSS