WordPress Plugin Vulnerabilities
Funnelforms Free < 3.4 Unauthenticated Stored Cross-Site Scripting
Description
The plugin does not sanitise and escape some parameters, which could allow unauthenticated users to perform Cross-Site Scripting attacks
Proof of Concept
1. Create a contact form 2. Embed the contact form shortcode on a post or page. 3. As an Unauthitncated user, inject the inputs for a malicious script such as `<script>alert("MalekAlthubiany")</script>` into the name field 4. Go to the "Leads" section as an admin 5. See the XSS
Affects Plugins
References
CVE
Classification
Type
XSS
OWASP top 10
CWE
CVSS
Miscellaneous
Original Researcher
Malek Althubiany
Submitter
Malek Althubiany
Submitter website
Submitter twitter
Verified
Yes
WPVDB ID
Timeline
Publicly Published
2023-09-12 (about 8 months ago)
Added
2023-09-20 (about 7 months ago)
Last Updated
2023-09-20 (about 7 months ago)