WordPress Plugin Vulnerabilities

Export All URLs < 4.2 - Editor+ Stored XSS

Description

The plugin does not sanitize and escape the url and title fields when exporting a list of posts, which could allow users with editor role or higher to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup).

Affects Plugins

Plugin icon
export-all-urls
Fixed in 4.2

References

CVE
CVE-2022-27856

Classification

Type
XSS
OWASP top 10
A7: Cross-Site Scripting (XSS)
CWE
CWE-79
CVSS
4.8 (medium)

Miscellaneous

Original Researcher
Universe
Verified
No
WPVDB ID
6d94e6a2-f007-4d86-b3f8-9129f3b3d9db

Timeline

Publicly Published
2023-05-10 (about 3 years ago)
Added
2023-05-10 (about 3 years ago)
Last Updated
2023-05-10 (about 3 years ago)

Other

Published
Title
Published
2025-07-11
Title
SureForms < 1.7.2 - Reflected XSS
Published
2024-09-30
Title
Store Exporter for WooCommerce < 2.7.3 - Reflected Cross-Site Scripting
Published
2024-07-31
Title
Post Grid, Form Maker, Popup Maker, WooCommerce Blocks, Post Blocks, Post Carousel – Combo Blocks < 2.2.86 - Authenticated (Contributor+) Stored Cross-Site Scripting via redirectURL Parameter of Date Countdown Widget
Published
2025-02-23
Title
GDPR Cookie Compliance < 4.15.9 - Admin+ Stored XSS
Published
2025-02-22
Title
Greenshift < 10.9 - Authenticated (Contributor+) Stored Cross-Site Scripting