WordPress Plugin Vulnerabilities

SportsPress < 2.7.9 - Reflected Cross-Site Scripting

Description

The plugin does not sanitise and escape its match_day parameter before outputting back in the Events backend page, leading to a Reflected Cross-Site Scripting issue

Proof of Concept

https://example.com/wp-admin/edit.php?post_type=sp_event&match_day=%22%3E%3Csvg%2Fonload%3Dalert%28%2FXSS%2F%29%3B%3E%3C%22

Affects Plugins

sportspress

Fixed in version 2.7.9

References

CVE

CVE-2021-24578

Classification

Type

XSS

OWASP top 10

A7: Cross-Site Scripting (XSS)

CWE

CWE-79

Miscellaneous

Original Researcher

iohex

Submitter

iohex

Submitter twitter

iohehe

Verified

Yes

WPVDB ID

69351798-c790-42d4-9485-1813cd325769

Timeline

Publicly Published

2021-11-16 (about 7 months ago)

Added

2021-11-16 (about 7 months ago)

Last Updated

2022-04-08 (about 3 months ago)

Our Other Services

WPScan WordPress Security Plugin